Apparently the Kerberos Identity Injection no longer works, as changes have been made on the Microsoft side. Unfortunately, this information has not been corrected in the documentation. More importantly, Identity Injection should support Kerberos. I have…
Access Manager is currently supporting protocols such as SAML 2.0, OIDC, JWT etc. It should also support CAS (Central Authentication Service). This idea is suggested based on the feedback of support that this is currently not implemented.
It should be possible to filter the RelayState variable on incoming IDP initiated sessions. Example: local NAM: https://nam.local/ remote IDP: https://idp.remote/ remote IDP initates a session towards local NAM via: https://nam.local/nidp/saml2/spassertion_consumer…