Solutions
Products
Support and Downloads
About Zebra
SAML Integration Guide for PTT Pro and Profile Manager
Introduction
Document Layout
Solution Components and Architecture
WFC-ACS Component Diagram
User Authorization Diagrams
Prerequisites
Configure WFC-ACS
Creating a Realm
Creating the Clients
Configuring the Endpoint Settings
Configuring the Endpoint Credentials
Configuring the Endpoint Mappings
SAML Descriptor File
Configuring the Identity Provider
Mapping the User Name from the IdP
Auto Launching the SAML Login
Exporting the WFC-ACS Certificate to SAML
Exporting the WFC-ACS Certificate to PTT Pro
Configure Workforce Connect
Configure Profile Manager
Authentication URL and Access Token URL
Client ID
Client Secret
Configure the PTT Pro Server
Configure the PTT Pro Client
Configure the Profile Client
Device Operation
Troubleshooting the Client Error Message: ADFS Error
Revision History
SAML Descriptor File
SAML Descriptor File
SAML Descriptor File
The SAML Descriptor file provides information needed to configure the WFC-ACS servic.
A sample SAML Descriptor file is shown below. You can also view a sample file at the
Sample Descriptor File
link.
You can access the Descriptor file from the Keycloak user interface. Navigate to the
Realm Settings
General
tab. Click on the
SAML 2.0 IdP Metadata
field under
Endpoints
to reveal the descriptor file.)
In the example Descriptor file below, the following lines contain the information needed to configure the WFC-ACS service.
The tag
<dsig:x509Certificate>
on line 10 contains the x509 certificate to import into the WFC-ACS service to provide access to the IdP.
The tag
<SingleLogoutService>
on line 15 contains the URL to be copied into the SAML Single Logout Service URL in the WFC-ACS service.
The tag
<SingleSignOnService>
on line 29 contains the URL to copy into the SAML Single Sign-On Service URL in the WFC-ACS service.
SAML Descriptor File
Configure WFC-ACS
