Share via

SAML-based SSO for a Ruby application.

Sig 41 Reputation points
2021-08-24T14:45:05.503+00:00

Hi there,
First of all, let me point out I'm totally new to the things below so, please, forgive me if it may feel silly.

I'm trying to develop a SAML-based SSO for a Ruby application.

In my Azure Active Directory admin center, I have created an enterprise application (SAML SSO Test) and set up single sign on as below.

125969-screen-shot-2021-08-24-at-43742-pm.png

On the Ruby side, I'm using the ruby-saml gem (https://github.com/onelogin/ruby-saml) and I have configured it as described in the README

settings.sp_entity_id = url_base + "/saml/metadata"
settings.assertion_consumer_service_url = url_base + "/saml/acs"
settings.assertion_consumer_logout_service_url = url_base + "/saml/logout"

Where /saml/metadata returns the configuration in XML format.

Now, when I try to sign in I get the following error

126082-screen-shot-2021-08-24-at-44155-pm.png

What am I misisng here?
Where should I define the enitity_id in the SAML configuration on the Azure Active Directory admin center?

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,629 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Siva-kumar-selvaraj 15,606 Reputation points
    2021-08-25T17:01:03.553+00:00

    Hello @Sig ,

    Thanks for reaching out.

    Looking at SAML authentication request, it seems that Ruby application sending following https://localhost:3000/saml/metadata as identifier so to fix this issue, you need to replace with same value in Azure AD enterprise application as shown below. Hope this helps.

    126369-image.png

    ------
    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.