Unable to add a generic SAML Identity Provider or and OpenID Identity Provider

Hi, We are trying to add DUO as an Identity Provider, It has 2 ways to do it by SAML and OpenID, but in Sophos Central there is no way to setup a generic SAML identity provider, It is just AD and Microsoft products, and talking about OpenID you are using an implicit flow but this flow is not safe enough. 

Are you planning to support OpenID with Authorization code grant or a generic SAML configuration setup? 



Updated the tags
[edited by: Gladys at 3:41 PM (GMT -8) on 4 Mar 2024]
Parents
  • Hi Gladys, created a case since 7 months ago, but I didn't received an update, and your team didn't work on it, here is the. detail of my ticket.

    Case Number
    01525550
    Partner Case Reporter
    Account Name
    Associated Account
    Partner Case Reporter Email
    Contact Name
    Partner Case Reporter Phone
    Preferred Team
    If selecting 24/7, please state your working hours and preferred time zone to work on your case (for example, 9:00am - 5:00pm PST)
    Global Customer / Partner Care Team (in English)
    Status
    Closed
    Owner
    Kavin K

    Case Information

    Subject
    07225683 / Unable to add SAML or OpenID Federated IDP / ref:_00D301GN6a._500KZ1Lf1i:ref
    Description
    Hi I'm working in the DUO team (https://duo.com) We are trying to add DUO as an Identity Provider, It has 2 ways to do it by SAML and OpenID, but in Sophos Central there is no way to setup a generic SAML identity provider, It is just AD and Microsoft products, and talking about OpenID you are using an implicit flow but this flow is not safe enough and it is not recommended being used anymore https://oauth.net/2/grant-types/implicit/. There is a some people trying to do the same, found some open cases: https://community.sophos.com/sophos-central/f/discussions/135084/unable-to-add-saml-federated-identity-providers I know on your Ideas portal there is an existent request to do it (CENFEAT-I-152) When are you planning supporting OpenID with Authorization code grant or a generic SAML configuration setup for another Federated Identity Providers? Thank you.
Reply
  • Hi Gladys, created a case since 7 months ago, but I didn't received an update, and your team didn't work on it, here is the. detail of my ticket.

    Case Number
    01525550
    Partner Case Reporter
    Account Name
    Associated Account
    Partner Case Reporter Email
    Contact Name
    Partner Case Reporter Phone
    Preferred Team
    If selecting 24/7, please state your working hours and preferred time zone to work on your case (for example, 9:00am - 5:00pm PST)
    Global Customer / Partner Care Team (in English)
    Status
    Closed
    Owner
    Kavin K

    Case Information

    Subject
    07225683 / Unable to add SAML or OpenID Federated IDP / ref:_00D301GN6a._500KZ1Lf1i:ref
    Description
    Hi I'm working in the DUO team (https://duo.com) We are trying to add DUO as an Identity Provider, It has 2 ways to do it by SAML and OpenID, but in Sophos Central there is no way to setup a generic SAML identity provider, It is just AD and Microsoft products, and talking about OpenID you are using an implicit flow but this flow is not safe enough and it is not recommended being used anymore https://oauth.net/2/grant-types/implicit/. There is a some people trying to do the same, found some open cases: https://community.sophos.com/sophos-central/f/discussions/135084/unable-to-add-saml-federated-identity-providers I know on your Ideas portal there is an existent request to do it (CENFEAT-I-152) When are you planning supporting OpenID with Authorization code grant or a generic SAML configuration setup for another Federated Identity Providers? Thank you.
Children
No Data