Setup:Azure-SAML-Connection

Establish Connection

On Entra

Click on Enterprise Application:

Click New Application:

Click Create your own Application:

Choose a distinct name,

Choose "Integrate any other application you don't find in the gallery.

Click Create.

This might take a while.

Choose "Single Sign-On":

Choose SAML:

Edit Basic Configuration:

Add Identifier and Reply URL and click save and close the sidebar:

Scroll Down to SAML Certificates and donwload Metadata XML:

On Application(BlueSpice):

This metadata XML file has to be saved in the persitent storage of your Dockers under $DATADIR/wiki/simplesamlphp/ as saml_idp_metadata.xml

Open Browser to URL:

https://my.cool.bluespice.url/_sp/module.php/saml/sp/metadata.php/default-sp

and your Browser downloads a File named default-sp.xml

On Entra:

Upload File here:

​​​

On Wiki:

Check Connection in Browser under URL:

https://my.cool.bluespice.url/_sp/module.php/admin

You can find the password in the persitent storage of your Dockers under $DATADIR/wiki/.wikienv

Choose Test:

Choose default-sp:

Now you should see your Azure Users Basic Claims or be forwarded to Login to Azure and see your BasicClaims afterwards.

Please compare your claim pathes with this given string and change values where needed:

{"emailAttribute":"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress","realNameAttribute":"http://schemas.microsoft.com/identity/claims/displayname","usernameAttribute":"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name","authSourceId":"default-sp"}

Go to Wiki SpecialPage BlueSpiceConfigmanager:

https://my.cool.bluespice.url/wiki/Special:BlueSpiceConfigManager

Click Add , check the Chekbox"Should login occur automatically when a user visits the wiki?", and after that click Save.

Open Wiki in a New Browser or Private Session: