SAML and group AD

556
4
01-14-2021 05:23 AM
kvin
by
New Contributor II

Hello,

I have installed an arcgis server, arcgis portal through my intranet.

In order to authenticate from the Internet, we want to use TAM authentication, keeping AD authentication.

However, if we use SAML authentication, will the management of roles and rights by Active Directory (AD) groups remain possible?

Kinds regards

Tags (1)
0 Kudos
4 Replies
DanPatterson
MVP Esteemed Contributor

@kvin the Community Feedback place is about feedback on how the Community is running.

I took a stab and move your posts to ArcGIS Enterprise or you might consider a more appropriate location for your questions.


... sort of retired...
0 Kudos
LynseyBlackburn
Esri Contributor

Hey @kvin,

You are able to pull from existing Enterprise Groups (Active Directory groups) when SAML logins are set up in your Portal. 

-Lynsey

0 Kudos
kvin
by
New Contributor II

Hi,

From my understanding, to use SAML I have to chosse between AD or SAML authentication ?

Do you have a sample configuration for SAML ?

Best regards

0 Kudos
LynseyBlackburn
Esri Contributor

I do not have a specific sample, it will depend on the identity provider you use to set up these SAML logins: https://enterprise.arcgis.com/en/portal/latest/administer/windows/configuring-a-saml-compliant-ident...

With SAML logins and with IWA logins, you have the ability to pull from AD groups. However, these are separate login configurations. See the documentation here: https://enterprise.arcgis.com/en/portal/latest/administer/linux/about-configuring-portal-authenticat... 

0 Kudos