Portal for ArcGIS: SAML logins with multiple IDPs without using discovery services

09-11-2020 01:58 AM
Occasional Contributor
ArcGIS Portal based web application are accessible for users from multiple ADFS (multiple internal and multiple external domains) . Is it possible to achieve this through SAML authentication by manually configuring multiple SERVICE PROVIDERS within Portal for ArcGIS? Is it possible and supported by ESRI for KERBEROS?

Portal of ArcGIS could connect to single IDP (identity provider) and also multiple IDPs using a DISCOVERY service. Is it possible to achieve connectivity to portal using multiple IDPs individually without configuring them in discovery service? is there any possibility to achieve this at IIS level?
Found this article:
Doesn't say if there are any other ways.
Thanks in Advance!
0 Kudos
1 Reply
Esri Contributor

Portal for ArcGIS only supports either a single identity provider or a federated collection of identity providers via a discovery service. The answer is the same whether considering ArcGIS Online or Portal for ArcGIS. Some identity providers can also serve as discovery services, but that aspect is something that would be useful to discuss with your SAML vendor if you'd like to explore your options.

-- Chris Pawlyszyn