问题描述

我正在努力了解使用PingFederate的SAML请求过程.

I am working to understand the SAML request process using PingFederate.

我正在发出SAML RST请求，以便获得对SharePoint Online实例的访问权限. PingFederate SSO已成功建立，用户必须通过ping登录才能联机到共享点.

I am making the SAML RST request in order to gain access to a SharePoint Online instance. PingFederate SSO is successfully set up and users must login through ping in order to get to sharepoint online.

现在，我想使用Java STS SDK 1.1将Saml RST制作到PingFederate STS.

Now I want to make a Saml RST to PingFederate STS using the Java STS SDK 1.1.

我有一个工作的STS端点: https://my.ping.endpoint/sp/sts.wst 我的SharepointOnline端点是: https://mydomain.sharepoint.com

I have a working STS endpoint: https://my.ping.endpoint/sp/sts.wstAnd my SharepointOnline endpoint is: https://mydomain.sharepoint.com

我正在尝试弄清在这种情况下用作AppliesTo的方式.

I am trying to figure out what to use as AppliesTo in this scenario.

定义:

我尝试将其设置为我们能想到的任何东西.但是没有运气.我相当确定可以使用: https://tenantname.sharepoint. com/_forms/default.aspx?wa = wsignin1.0 ，但它不起作用.我通过ping STS不断收到SOAP错误:

I've tried setting it to anything we can think of. But no luck. I was fairly sure I could use: https://tenantname.sharepoint.com/_forms/default.aspx?wa=wsignin1.0 but it didn't work. I keep getting a SOAP Fault from ping STS:

Unable to determine partner SP connection by AppliesTo: http://my-AppliesTo-url-here

这是我需要从PingFederate管理界面获得的某些URL吗?我怎么找到这个?

Is this some URL I need to get from the PingFederate admin UI? How can I find this?

推荐答案

在您的" SP连接"，" WS-Trust STS "，"协议"下设置"中可以输入"PARTNER SERVICE IDENTIFIER(与RST中的应用程序相对应)"

Under your "SP Connection", "WS-Trust STS", "Protocol Settings" there is a place to enter the "PARTNER SERVICE IDENTIFIER (CORRESPONDS TO APPLIESTO IN RST)"

这篇关于在哪里可以找到PingFederate的“依赖方"? (将在SAML RST的"AppliesTo"中设置)的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持！