question

BrianStringfellow-3596 avatar image
0 Votes"
BrianStringfellow-3596 asked piaudonn answered

AD FS certificates

Hello,
I am trying to set up single sign-on with Zabbix. The part I am stuck on is importing the certificates:

To use SAML authentication Zabbix should be configured in the following way:

Private key and certificate should be stored in the ui/conf/certs/, unless custom paths are provided in zabbix.conf.php.

By default, Zabbix will look in the following locations:

ui/conf/certs/sp.key - SP private key file
ui/conf/certs/sp.crt - SP cert file
ui/conf/certs/idp.crt - IDP cert file

How do I get these certificates from AD FS?
Thank you

adfs
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

piaudonn avatar image
0 Votes"
piaudonn answered

For these two it is up to the SP owner to provide them.

ui/conf/certs/sp.key - SP private key file
ui/conf/certs/sp.crt - SP cert file

This one in in the federation metadata:

ui/conf/certs/idp.crt - IDP cert file

URL is https://<adfs URL>/FederationMetadata/2007-06/FederationMetadata.xml it is in base64 within the file.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.