cancel
Showing results for 
Search instead for 
Did you mean: 

SAML policy SA Entity ID changed

mattspierce_
Frequent Contributor

SAML policy SA Entity ID changed

We are finalizing the SAML setup with one of our vendors. We sent them our SA Entity ID. I had to edit the Consumer Service URL and the Resources URL. That modified the SA Entity ID and blew the config. Is this Entity ID something I can change back to its original value. I canÕt edit it in the SAML SSO Policies directly. ItÕs some kind of system generated value.

Original value

https://vpn.adtran.com/dana-na/auth/saml-endpoint.cgi?p=idp4

Post Edit value

https://vpn.adtran.com/dana-na/auth/saml-endpoint.cgi?p=idp5

3 REPLIES 3
zanyterp_
Respected Contributor

Re: SAML policy SA Entity ID changed

I don't believe so. When you refer to "blowing the config" do you mean you deleted the policy and created a new one (as the URLs indicate may have happened)?
Nipl_
New Contributor

Re: SAML policy SA Entity ID changed

The entity ID incremented each time a new SAML object is created. Usually editing a resource does not modify the entity ID but you should not delete and recreate the object.

Do you tried to export the settings in XML format, change the entity ID in the XML and import the modified XML file ?

(I have never tried, it should be validated in a test system !)

VVJ_
Contributor

Re: SAML policy SA Entity ID changed

This is indeed a system generated value and as Nipl pointed out, it is incremented by 1 everytime you create a new SAML SSO policy. In case you delete an existing policy (say with Entity ID https://vpn.adtran.com/dana-na/auth/saml-endpoint.cgi?p=idp4), this is never reused.
I've never seen the Entity ID change when you modify the settings though._