Support | Consulting & Sales

DE | EN

Menu

ADFS/SAML activation

ADFS/SAML activation

Introduction

 

This document is a step-by-step instruction to connect an existing ADFS (identity Provider) to simplex.

Key Benefits

  • Accessing simplex authoring functionality with your ADFS logins
  • Managing ADFS groups/users specific simplex video project access
  • Lifecycle Management for linking/unlinking ADFS users to simplex authors

Requirements

  • simplex media server (SMS) version >= 3.7.0
  • internal or external ADFS/Identity Provider server (ADFS example metadata url: https://server/FederationMetadata/2007-06/FederationMetadata.xml)

Please contact support@xtendx.com in case you have any further questions.

 

Guide

1. Configure Relying Party Trust

1.1 Download the simplex media server (SMS) metadata from url https://media10.simplex.tv/saml/metadata (For private clouds, use the respective hostname).

1.2 Open "AD FS Management", press "Right Mouse Button" on "Relying Party Trust" and choose "Add Relying Party Trust..."

1.3 Choose "Claims aware" and click "Start".

1.4 Choose "Import data about the relying party from a file", click "Browse" and choose metadata file from point 1. Then click "Next".

1.5 Enter "Display name" and click "Next"

1.6 In the "Choose Access Control Policy" window, select "Permit everyone for intranet users" and click "Next"

1.7 In the "Ready to Add Trust" click "Next"

1.8 Ensure that "Configure claims issuance policy for this application" is checked and click "Close"

2. Configure Claim Issuance Policy

2.1 Select the added Relying Party Trust and click on "Edit Claim Issuance Policy"

2.2 In opened window click "Add Rule..."

2.3 Choose "Send LDAP Attributes as Claims" from "Claim rule template" and click "Next".

2.4 Fill the "Claim rule name" with any value, set "LDAP Attribute" to "User-Principal-Name", "Outgoing Claim Type" to "Name ID" and and "Attribute Store" to "Active Directory". Click "Finish".

2.5 Click "Finish".

3. Configure Windows Integrated Authentication (WIA)

3.1 Open Internet Explorer, click the "Tools" button and choose "Internet Options".

 3.2 Switch to "Security" tab, choose "Trusted sites" and click "Sites"

3.3. Add the website with your SMS FQDN (https://sms.simplex.tv in this example) and click "Add". Then click "Close".

3.4 In the ADFS configuration navigate to "Authentication Methods" and click Edit in "Primary Authentication Methods". Ensure that in Intranet block "Form Authentication" is not selected and "Windows Authentication" is selected.

4. Inform xtendx

4.1 After having successfully followed this guide, please contact xtendx personnel via support@xtendx.com to assist you in finalizing the installation.

You weren't able to find whet you were looking for? Contact us now.

Our support team is available
from Monday until Friday
from 9 am until 5 pm.
You will get an answer from us within 24 hours.

In urgent cases (system failure) outside office hours, please call our emergency service: +41 44 580 97 16

Customers who have booked Live Support can use the number assigned to them.

E-Mail Support

Call support

More support articles

Peer-to-Peer
01.03.2017

Caching
01.03.2017

Multicast
01.03.2017

simplex API
26.09.2016

Contact xtendx

Our support team is available
from Monday until Friday
from 9 am until 5 pm.
You will get an answer from us within 24 hours.

In urgent cases (system failure) outside office hours, please call our emergency service: +41 44 580 97 16

Customers who have booked Live Support can use the number assigned to them.

Thank you! Your message has been sent successfully.

Ooops. There was an error. Did you fill in all required (*) fields?