Is it possible for Zimbra webmail to authenticate against 3rd party SAML provider then map user accounts on Zimbra server?
If so, how is this done?
Webmail authenticate via 3rd party SAML
-
DualBoot
- Elite member
- Posts: 1326
- Joined: Mon Apr 18, 2016 8:18 pm
- Location: France - Earth
- ZCS/ZD Version: ZCS FLOSS - 8.8.15 Mutli servers
- Contact:
Re: Webmail authenticate via 3rd party SAML
Hello,
it is not native with Zimbra. You need to use for example Apache with mod_shib and redirect Zimbra login to this Apache.
Regards,
it is not native with Zimbra. You need to use for example Apache with mod_shib and redirect Zimbra login to this Apache.
Regards,
-
L. Mark Stone
- Ambassador
- Posts: 2802
- Joined: Wed Oct 09, 2013 11:35 am
- Location: Portland, Maine, US
- ZCS/ZD Version: 10.0.7 Network Edition
- Contact:
Re: Webmail authenticate via 3rd party SAML
Zimbra ships with saml middleware for two providers.
There are READMEs in the file system along with the appropriate jar files.
There is also a very dated wiki that describes the SAML authentication process in Zimbra.
Mark
There are READMEs in the file system along with the appropriate jar files.
There is also a very dated wiki that describes the SAML authentication process in Zimbra.
Mark
___________________________________
L. Mark Stone
Mission Critical Email - Zimbra VAR/BSP/Training Partner https://www.missioncriticalemail.com/
AWS Certified Solutions Architect-Associate
L. Mark Stone
Mission Critical Email - Zimbra VAR/BSP/Training Partner https://www.missioncriticalemail.com/
AWS Certified Solutions Architect-Associate
-
DualBoot
- Elite member
- Posts: 1326
- Joined: Mon Apr 18, 2016 8:18 pm
- Location: France - Earth
- ZCS/ZD Version: ZCS FLOSS - 8.8.15 Mutli servers
- Contact:
Re: Webmail authenticate via 3rd party SAML
Yes you're right Mark, but the readme is very light.
For example does it support WAYF ? Is it multi domain ?
Seems to be unclear.
For example does it support WAYF ? Is it multi domain ?
Seems to be unclear.
-
L. Mark Stone
- Ambassador
- Posts: 2802
- Joined: Wed Oct 09, 2013 11:35 am
- Location: Portland, Maine, US
- ZCS/ZD Version: 10.0.7 Network Edition
- Contact:
Re: Webmail authenticate via 3rd party SAML
I agree on the lightness of the documentation, and I regret that I am not a SAML expert so I cannot answer your question. I do know that Zimbra Support has assisted with a number of large SAML deployments, so if it is a Network Edition deployment you are entitled to Support for help.DualBoot wrote:Yes you're right Mark, but the readme is very light.
For example does it support WAYF ? Is it multi domain ?
Seems to be unclear.
Mark
___________________________________
L. Mark Stone
Mission Critical Email - Zimbra VAR/BSP/Training Partner https://www.missioncriticalemail.com/
AWS Certified Solutions Architect-Associate
L. Mark Stone
Mission Critical Email - Zimbra VAR/BSP/Training Partner https://www.missioncriticalemail.com/
AWS Certified Solutions Architect-Associate
-
nicholascmg
- Posts: 2
- Joined: Fri Nov 23, 2018 2:12 am
Re: Webmail authenticate via 3rd party SAML
There is very limited documentation, from what I see currently.
Any pointers when the SSO server received following error
Unparseable date: "2018-10-13T10:01:37Z"
Any pointers when the SSO server received following error
Unparseable date: "2018-10-13T10:01:37Z"