TechQA.

AzureAD authentication to Icingaweb2

2.2k views Asked by At

Is it possible to authenticate to Icingaweb2 through AzureAD (SAML/oauth2/openID) ?

oauth-2.0 azure-active-directory saml-2.0 icingaweb2
Original Q&A
2

There are 2 answers

0
David Hönig On BEST ANSWER

This thing is actually possible to achieve with usage of https://github.com/bitly/oauth2_proxy

  1. After this proxy is installed and configured, run it with -set-xauthrequest info is in github repo wiki/readme

  2. Set up icingaweb2 for external authentication by adding:

    [autologin]
backend = external

    into authentication.ini file

  3. In icingaweb2 you need to add:

    fastcgi_param REMOTE_USER $http_X_User;

    into nginx/apache configuration.

If you will use same cookie name and secret pair in oauth2 proxy configuration, you will be authenticated to all your systems (Graylog SSO plugin, Icinga2, any your site) with pure SSO experience.

0
rbrayb On

Depending on how much information is available, you can add a custom application to Azure AD.

This way only allows the connection to be SAML.

Related Questions in OAUTH-2.0

Related Questions in AZURE-ACTIVE-DIRECTORY

Related Questions in SAML-2.0

Related Questions in ICINGAWEB2

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions