Hello Elastic community,
I'm currently working on configuring SAML authentication for Elastic Cloud (not ECE). I have the following SAML configuration that I need to implement:
xpack.security.authc.realms.saml.saml1:
order: 2
idp.metadata.path: saml/idp-metadata.xml
idp.entity_id: "https://sso.example.com/"
sp.entity_id: "https://kibana.example.com/"
sp.acs: "https://kibana.example.com/api/security/saml/callback"
sp.logout: "https://kibana.example.com/logout"
attributes.principal: "urn:oid:0.9.2342.19200300.100.1.1"
attributes.groups: "urn:oid:1.3.6.1.4.1.5923.1.5.1."
I have two specific questions:
-
IdP Metadata: The Siteminder vendor doesn't provide an IdP metadata URL. How can I configure the IdP metadata file (idp-metadata.xml) in Elastic Cloud without an URL?
-
Certificate Upload: Additionally, I would like to know how to upload a certificate (e.g., .pem) in Elastic Cloud, as I couldn't find any documentation regarding this in the Elastic documentation.
I'd appreciate any guidance or insights you can provide to help me with these SAML configuration challenges in Elastic Cloud.
Thank you in advance for your assistance.