SureMDM

Add SureMDM as a SAML Service Provider in ADFS

To add SureMDM as a SAML service provider in ADFS, follow these steps:

1.  Access Remote Desktop Connection/ Login into ADFS Server.

2.  Launch AD FS Console from Server Manager, then click Tools and select AD FS Management.

3.  Click Relying Party Trusts and then click Add Relying Party Trust.

4.  Select Claims aware and click Start.

5.  Select Enter data about relying party manually and click Next.

6.  Enter Display Name as SureMDM and click Next.

7.  In the Configure Certificate section, browse the certificate (ssocert.cer). Refer to Generate Certificate.

8.  Check Enable support for the SAML 2.0 WebSSO protocol and enter URL as 

https://<Server Path>/suremdm/saml?id=1     

9.  Enter urn:42gears:suremdm:SAML2ServiceProvider in Relying party trust identifiers field.

10. Select Permit everyone or select a specific group based on your requirement.

11. Click Next > Close.

12. In the main AD FS Console, right-click SureMDM and select Properties.

13. Select Signature Tab and click Add.

14. Select the certificate (ssocert.cer. Refer Generate Certificate) and click Apply.

15. Select Endpoints tab and click Add SAML.

16. Select Endpoint type as SAML Assertion Consumer and Trusted URL as 

https://<Server Path>/suremdm/saml?id=1

17. Click OK.

18. In the Edit Claim Issuance Policy prompt, click Add Rule.

19. Click Next.

20. In Claim rule name field, enter SureMDM, select Attribute store as Active Directory and add following mappings and click Finish.

21. Click OK.