Welcome to the Inedo Forums! Check out the Forums Guide for help getting started.
If you are experiencing any issues with the forum software, please visit the Contact Form on our website and let us know!
ProGet 6.0 and Azure AD Single Sign-on | SAML Basic License?
-
Hi folks,
We've been using the free edition of ProGet for years now and I've finally convinced the company to pay for a Basic License in the coming days. I've already started setting up a VPS in AWS Lightsail to run things and want to integrate things via our Azure AD.
My dilemma is the documentation is not clear if this is supported on the Basic license?
The Overview for SAML says it's a preview 5.x feature and only on the Enterprise license, whilst the page on Azure AD has a note that the feature I'd want to use is only on 6.0.11 with 6.1 preview features turned on (which is what I've setup ATM).
Can you confirm the licensing requirements for using the feature as documented here:
https://docs.inedo.com/docs/various-saml-azure-ad#configuring-azure-adThanks,
Jon
-
Hi @jon-benson
Sorry for the mix-up / confusion. I'll try to clarify a few points.
LDAP/AD integration is only available on paid editions of ProGet (Basic, Enterprise), and you can integrate with Azure AD using LDAP. This requires you to type in your Azure AD username/password in the ProGet login page.
SAML/Single-Sing-On is only available in ProGet Enterprise edition. This allows you to sign-in to ProGet without typing in your Azure AD username/password. Also, this is no longer a preview/beta feature (the docs were just incorrect; I've now updated).
For ProGet v2022 (aka 6.1), we are developing an improved Security Management user interface. It's basically the same, but just easier to work with. It's available as a preview feature, and that preview is enabled by default on new installations. We just added SAML support to this new interface, so on 6.0.12 you should be able to use it.
hope this helps clarify,
Alana
-
@atripp Thanks for the response.
You've stated that Azure AD integration is possible using LDAP. Do you have any documentation as to how I go about that? The machine I'm hosting ProGet on is NOT on the domain.
This is the closest documentation I can find
https://docs.inedo.com/docs/various-ldap-advancedSomething for the 6.1 preview interface would be ideal?
-
Hi @jon-benson ,
We don't have a tutorial for that I'm afraid :(
However, you're on the right track -- it does involve using the Advanced Properties on the User Directory to specify the domain controller host, credentials, and so on.
Since you mentioned you have / will purchased ProGet, let me reach out to my colleague Gene, he is our Customer Advocacy Manager and often sets-up appointments to help with onboarding/configuration for new users. This could be a chance to get some assistance on that.
Thanks,
Alana
-
@atripp said in ProGet 6.0 and Azure AD Single Sign-on | SAML Basic License?:
Since you mentioned you have / will purchased ProGet, let me reach out to my colleague Gene, he is our Customer Advocacy Manager and often sets-up appointments to help with onboarding/configuration for new users. This could be a chance to get some assistance on that.
Thanks for the offer but in the end I gave up and setup an EC2 instance in a VPC that let us join it to the domain. It made life easier all around for a small difference in monthly cost. :)
-
@jon-benson Hi John. How was your experience in setting up ProGet on EC2 and joining it on your existing domain? Any issues you encountered or tips you can share?