REST API reference
Security authentication cluster saml-sp endpoint overview
Suggest changes
-
PDF of this doc site
Collection of separate PDF docs
Creating your file...
Overview
You can use this API to retrieve and display relevant information pertaining to the SAML service provider configuration in the cluster. The POST operation creates a SAML service provider configuration if there is none present. The DELETE operation removes the SAML service provider configuration. The PATCH operation enables and disables SAML in the cluster. Various responses are shown in the examples below.
Examples
Retrieving the SAML service provider configuration in the cluster.
The following output shows the SAML service provider configuration in the cluster.
# The API:
/api/security/authentication/cluster/saml-sp
# The call:
curl -X GET "https://<mgmt-ip>/api/security/authentication/cluster/saml-sp" -H "accept: application/hal+json"
# The response:
{
"idp_uri": "https://examplelab.customer.com/idp/Metadata",
"enabled": true,
"host": "172.21.74.181",
"certificate": {
"ca": "cluster1",
"serial_number": "156F10C3EB4C51C1",
"common_name": "cluster1"
},
"_links": {
"self": {
"href": "/api/security/authentication/cluster/saml-sp"
}
}
}
Creating the SAML service provider configuration
The following output shows how to create a SAML service provider configuration in the cluster.
# The API:
/api/security/authentication/cluster/saml-sp
# The call:
curl -X POST "https://<mgmt-ip>/api/security/authentication/cluster/saml-sp?return_records=true" -H "accept: application/hal+json" -d '{ "idp_uri": "https://examplelab.customer.com/idp/Metadata", "host": "172.21.74.181", "certificate": { "ca": "cluster1", "serial_number": "156F10C3EB4C51C1" }}'
Updating the SAML service provider configuration
The following output shows how to enable a SAML service provider configuration in the cluster.
Disabling the configuration requires the client to be authenticated through SAML prior to performing the operation.
# The API:
/api/security/authentication/cluster/saml-sp
# The call:
curl -X PATCH "https://<mgmt-ip>/api/security/authentication/cluster/saml-sp/" -d '{ "enabled": true }'
Deleting the SAML service provider configuration
# The API: /api/security/authentication/cluster/saml-sp # The call: curl -X DELETE "https://<mgmt-ip>/api/security/authentication/cluster/saml-sp/"