Versions Compared

Old Version 39

changes.mady.by.user Steve Weber

Saved on

compared with

New Version 40

changes.mady.by.user Mirko Vucicevich

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Table of Contents
stylenone

Getting started

NOTE: FAST Members can access fully functional examples w/ localhost client ID on gitlab.

  • Your domain will need valid HTTPS

  • Need a callback URL (usually handled by one of the solutions below.

  • Need to contact IST for a client key via a ticket

    • NEW: OpenID Connect

      • ISS-General 2FA https://uwaterloo.atlassian.net/servicedesk/customer/portal/2/group/413/create/1660

      • set summery: “OIDC: add new web client“

      • set select topic you require assistance with: “Duo 2FA support”

      • set Additional comments:

        Code Block
        ## NOTE: you first need to know your callback URI
## The django module uses /oidc/duo/callback/
## Apache uses /secure/redirect_uri
Allowed URIs:
- https://x.x.uwaterloo.ca/oidc/duo/callback/
- https://x-stage.x.uwaterloo.ca/oidc/duo/callback/
*group* in short format, not full DN.
claims: winaccountname, group, email, name, given_name, family_name

  • Combining authentication with Grouper defined NEXUS groups can be a robust solution

...