Adaxes

SAML Response - Reply URL is http instead of https due to SSL offloading

+1 vote

I'm trying to enable SSO using SAML with AzureAD as the IDP. I'm struggling to get it to work, we use a BIG-IP as our loadbalancer which handles the SSL offloading. Adaxes webinterface runs on port 80 behind the loadbalancer.

The reply url is the saml response provided by adaxes is using http instead of https which AzureAD does not like. AzureAD does not allow you to put http addresses for the reply url.

The Web Interface address configured in adaxes is something like: https://adaxes,company.com

Does anybody have experience with this setup using SSL offloading or am I forced to remove the SSL offloading and do it on the server itself?

by (100 points)

1 Answer

0 votes
by (14.1k points)

Hello!

Unfortunately, we do not have any experience configuring Adaxes to work with Azure AD as an Identity Provider in conjunction with SSL offloading. As per our check, there is no possibility to configure the desired workflow. However we recommend considering a possibility to contact BIG-IP support to check for possible solutions.

Related questions

0 votes
1 answer
Is there a way for Adaxes to use Microsoft 365 user profile pictures instead of having to select a file per user?

Is there a way for Adaxes to use a user's Microsoft 365 profile pictures instead of having to select a file on a per user basis?

asked Feb 1 by keneth.figueroa (20 points)
0 votes
1 answer
Error clearing Manager due to Property ''Manager'' is required.

Hi, I am trying to clear the manager of disabled accounts and created a scheduled task for this Right now it is failing for all users (currently 4 in total) With error ... but it won't also remove/clear the manager. All user still have the attribute set.

asked Jan 30 by wintec01 (1.5k points)
+1 vote
1 answer
Is generating and distributing a Temporary Access Pass (TAP) from Azure AD instead of a password supported?

Aiming to go passwordless, this is a must-have

asked Aug 30, 2023 by JM (30 points)
0 votes
1 answer
Is it bug or feature, that %member% in version 2019.2 returns GUID instead of DN that it returned in previous version

We were used to bind to group member object using: $member = $Context.BindToObjectByDN("%member%") which worked perfectly, but now it is not. Its because %member% is returning ... ? And is it possible to get DN of added/removed member using another variable?

asked Sep 14, 2020 by KIT (960 points)
0 votes
1 answer
How can I force Adaxes to use locally installed EMT instead of Exchange server?

Hi, we have replaced our local Exchange server with installation of Exchange Management Tools (EMT) installed directly on Adaxes server. And my question is: How can I force ... this is how 'Set External Senders' option looks in Adaxes config Thanks in advance

asked Apr 1, 2023 by KIT (960 points)
3,547 questions
3,238 answers
8,232 comments
547,809 users