self-hosted/teleport
self-hosted/teleport
1
0
Fork 0
mirror of https://github.com/gravitational/teleport synced 2024-10-21 17:53:28 +00:00
Code Issues Packages Projects Releases Wiki Activity

Updated saml.md.

Browse source
This commit is contained in:
Russell Jones 2017-05-16 13:31:34 -07:00
parent 323a51e2a2
commit 2cc9f28c57
3 changed files with 4 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

BIN
docs/2.0/img/adfs-3.png Normal file
View file

Binary file not shown.
Side by side

After

Width:  |  Height:  |  Size: 205 KiB

BIN
docs/2.0/img/adfs-4.png Normal file
View file

Binary file not shown.
Side by side

After

Width:  |  Height:  |  Size: 211 KiB

8
docs/2.0/saml.md
View file

@ -18,15 +18,15 @@ mapping of the LDAP Attribute `E-Mail-Addresses` to `Name ID`. A group
membership claim should be used to map users to roles (for example to
separate normal users and admins).
![Name ID Configuration](https://github.com/gravitational/teleport/tree/master/docs/2.0/img/adfs-1.png?raw=true)
![Group Configuration](https://github.com/gravitational/teleport/tree/master/docs/2.0/img/adfs-2.png?raw=true)
![Name ID Configuration](/docs/2.0/img/adfs-1.png?raw=true)
![Group Configuration](/docs/2.0/img/adfs-2.png?raw=true)
In addition if you are using dynamic roles (see below), it may be useful to map
the LDAP Attribute `SAM-Account-Name` to `Windows account name` and create
another mapping of `E-Mail-Addresses` to `UPN`.
![WAN Configuration](https://github.com/gravitational/teleport/tree/master/docs/2.0/img/adfs-3.png?raw=true)
![UPN Configuration](https://github.com/gravitational/teleport/tree/master/docs/2.0/img/adfs-4.png?raw=true)
![WAN Configuration](/docs/2.0/img/adfs-3.png?raw=true)
![UPN Configuration](/docs/2.0/img/adfs-4.png?raw=true)
You'll also need to create a Relying Party Trust, use the below information to
help guide you through the Wizard. Note, for development purposes we recommend