vms show_saml

This command displays important SAML configuration for a specific IDP. This command also displays the SP SSO login URL to use in the IDP configuration page.

Usage

vms show_saml_config --idp-name IDP_NAME

Required Parameters

--idp-name IDP_NAME

Specifies the name of the IDP configuration to display.

Command Output

`idp`	The sso_login to your IDP application.
`metadata`	Displays the metadata, and shows if it is local or remote.
`sp_settings`	The SP (VMS) settings for SAML. Some of the values such as `sso_url` or the `required_attributes` must to be entered in the IDP.

Example

vcli: admin> vms show_saml_config --idp-name Okta
+-------------+-------------------------------------------------------------------------------------------------------------------------+
| idp         | {'http://www.okta.com/<app_id>': {}}                                                                        |
| metadata    | {'remote': [{'url': 'https://<idp_app_url>.okta.com/app/<app_id>/sso/saml/metadata'}]}                       |
| sp_settings | {'entityid': 'https://<mgmt_vip>/api/saml2/metadata/', 'sso_url': ['https://<mgmt_vip>/api/saml2/acs/?idp_name=Okta', |
|             | 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST'], 'single_logout_service': ['https://<mgmt_vip>/saml2/ls/post/',      |
|             | 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST'], 'encrypt_assertion': False, 'want_assertions_or_response_signed':    |
|             | False, 'force_authn': False, 'required_attributes': ['email', 'username']}                                              |
+-------------+-------------------------------------------------------------------------------------------------------------------------+