I am trying to follow the Knox SSO documentation to integrate with our existing Idp and there are few things that are not very clear as to how we get those values as the example shown uses Knox page to login. Our requirement is whenever a user tries to access Ambari UI, Ranger UI, and Yarn, they need to be redirected to our IDP login page where there are authenticated against and if they provide the valid SSO details they will be able to access the landing pages of Ambari UI, Ranger, and Yarn.
When we run the
It asks you for the provider URL. Should we enter our IdP URL or the below?
For the provider URL, enter:
2. Where do we use the knox generated cert in below step.
Run the following CLI command to export the Knox certificate.
3. In the topolgy.xml, how do we generate the sp-metadata.xml. For the SP url to be trusted by the IDP, we will need the following parameters such as EntityId, PartnerID, Signing Cert for our IDP to register this on their end. How do we generate those details. Appreciate if you can provide the details.