SAML-Login - Unsupported broeser
This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.SAML-Login - Unsupported broeser
This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Hi,
we wanted to set-up SAML-Auth, but are failing with the following screenshots?
We tried on all modern browser, but all are failing.
Thanks for your help in advance!
Lars
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
We finally found a solution:
there are 3 requierement for it to be working:
- custom attribute: "username" map to Username of IDP
- custom attribute "usergroup_name" map to Group of IDP (Attention: only 1 group per user is supported)
- Relay_State has to be set to base64(ResourceID_OmadaID). The ResourceID / OmadaID, can be found when clicking on the first symbol.
- create a SAML group in Omada and give the group the necessary right
With that being done, it works for all my instances
- Copy Link
- Report Inappropriate Content
I am not sure if it helps, but I have similar problem with login to Omada Controlles and I have to clear cache.
- Copy Link
- Report Inappropriate Content
thanks for your help. Didn't work for me.
- Copy Link
- Report Inappropriate Content
Hi @LarsK1
What's the firmware version of your controller?
What type of controller are you using?
Please also try using incognito or private mode of the browsers.
- Copy Link
- Report Inappropriate Content
thanks for your quick reply. It's a linux software controller running 5.15.8.1 (Beta).
Incognito didn't change anything.
- Copy Link
- Report Inappropriate Content
@Vincent-TP can you please open a support ticket for this case?
- Copy Link
- Report Inappropriate Content
Sure @LarsK1
This is the case ID TKID250144091.
But the reported issue should be fixed easily by changing web browsers or PCs.
If none of them helps, please reply the support ticket email with the troubleshooting steps you have tried.
In the meantime, you may update the controller to the latest beta version 5.15.8.2 and see if the issue persists.
Omada SDN Controller_V5.15.8 Pre-Release Firmware(Update on Jan 8th, 2025)
We are planning to release a new pre-release version 5.15.20.x for linux system soon.
- Copy Link
- Report Inappropriate Content
There is an error while perfoming saml auth:
01-22-2025 14:38:36.599 ERROR [https-jsse-nio-443-exec-5] [] o.a.c.c.C.[.[.[.[dispatcherServlet](): Servlet.service() for servlet [dispatcherServlet] in context with path [] threw exception [Request processing failed; nested exception is java.lang.IllegalArgumentException: Illegal base64 character 3a] with root cause java.lang.IllegalArgumentException: Illegal base64 character 3a
Linux controller v:5.15.8.2 (Stable)
I didn't get it working. For now it's dead feature, atleast for me. Maybe when controller is mature enough.
Best Regards,
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
Hi. Same for me on Linux 5.15.8.2.
Both Omada and Authentik are behind nginx reverse proxy, both have Letencrypt wildcard certificate.
Does not matter which browser to use (Edge/Chrome) on pc or on Android. No difference if incognito mode or not. No difference if accessing directly or through reverse proxy.
Sorry, the browser is not compatible.
The current browser does not support Omada Controller. Please upgrade to a newer version or use other browsers.
Maybe my Authentik SAML application/provider config is wrong and thats why it shows this error? Looked into Omada Controller 5.14 User Guide (latest that I found online), no mention of SAML at all.
- Copy Link
- Report Inappropriate Content
Hi @Vincent-TP ,
upgraded to the latest version but without sucess. Also messaged the support team, but didn't get a response yet. Could you maybe check back with them?
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 2820
Replies: 19
Voters 0
No one has voted for it yet.