<html>
<head>
<meta content="text/html; charset=windows-1252"
http-equiv="Content-Type">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<div class="moz-cite-prefix">A few years ago, I did setup of
Picketlink as IDP and Salesforce as SP. Some docs is here:
<a class="moz-txt-link-freetext" href="https://docs.jboss.org/author/display/PLINK/Picketlink+as+IDP,+Salesforce+as+SP">https://docs.jboss.org/author/display/PLINK/Picketlink+as+IDP,+Salesforce+as+SP</a>
.<br>
<br>
I didn't yet try with Keycloak and I guess the docs may be
outdated. But hopefully you can use it as a starting point. At
least the setup on Salesforce side. <br>
<br>
AFAIR the Salesforce signs all the messages including SAML
requests. So for the setup on Keycloak side, you may need to
enable flag "Client Signature Required" for the SAML client in
admin console and then go to tab "SAML Keys" and import the
certificate from Salesforce. But not sure at 100%...<br>
<br>
Good luck,<br>
Marek<br>
<br>
On 08/12/15 15:42, Ben Bazian wrote:<br>
</div>
<blockquote
cite="mid:860E8DAFFC76794694CFF405F8A1E71F02792BA6@416429-EXCH1.mbopartners.com"
type="cite">
<meta http-equiv="Content-Type" content="text/html;
charset=windows-1252">
<meta name="Generator" content="Microsoft Word 15 (filtered
medium)">
<!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]-->
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Georgia;
panose-1:2 4 5 2 5 4 5 2 3 3;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:#954F72;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:"Calibri",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-family:"Calibri",sans-serif;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
<div class="WordSection1">
<p class="MsoNormal">Sorry for the double post but figured I
would try one more time. Has anyone successfully setup
Keycloak as an IDP into Salesforce? I have it working with
OpenID but the way Salesforce implements it is not
acceptable. Would like to use SAML instead. I am seeing
nothing via a web search on this.<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Any and all help appreciated.<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><span
style="font-size:10.0pt;font-family:"Georgia",serif;color:#999999">__________________________<o:p></o:p></span></p>
<p class="MsoNormal"><b><span
style="font-size:10.0pt;font-family:"Georgia",serif;color:#A00B10">BEN
BAZIAN<o:p></o:p></span></b></p>
<p class="MsoNormal"><b><span
style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">Director,
Information Systems<o:p></o:p></span></b></p>
<p class="MsoNormal"><span
style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">MBO
Partners<o:p></o:p></span></p>
<p class="MsoNormal"><span
style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433"><o:p> </o:p></span></p>
<p class="MsoNormal"><span
style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433"><img
id="Picture_x0020_1"
src="cid:part1.07040004.08050003@redhat.com"
alt="cid:image001.png@01D057F2.BE72C880" height="64"
width="181"><o:p></o:p></span></p>
<p class="MsoNormal"><span
style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433"><o:p> </o:p></span></p>
<p class="MsoNormal"><b><span
style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">t</span></b><span
style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">:
703.793.6010<o:p></o:p></span></p>
<p class="MsoNormal"><b><span
style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">f</span></b><span
style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">:
703.793.6079<o:p></o:p></span></p>
<p class="MsoNormal"><b><span
style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">e</span></b><span
style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">:
<a class="moz-txt-link-abbreviated" href="mailto:bbazian@mbopartners.com">bbazian@mbopartners.com</a><o:p></o:p></span></p>
<p class="MsoNormal"><b><span
style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">w</span></b><span
style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433">:
mbopartners.com<o:p></o:p></span></p>
<p class="MsoNormal"><span
style="font-size:10.0pt;font-family:"Georgia",serif;color:#353433"><o:p> </o:p></span></p>
<p class="MsoNormal"><span
style="font-size:7.0pt;font-family:"Georgia",serif;color:#353433">Notice:
This email and any files transmitted with it are
confidential. They are intended solely for the use of the
individual addressed. If you have received this email in
error please notify <a moz-do-not-send="true"
href="mailto:postmaster@mbopartners.com"><span
style="color:#353433">postmaster@mbopartners.com</span></a>
and permanently delete the e-mail and files.<o:p></o:p></span></p>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
keycloak-user mailing list
<a class="moz-txt-link-abbreviated" href="mailto:keycloak-user@lists.jboss.org">keycloak-user@lists.jboss.org</a>
<a class="moz-txt-link-freetext" href="https://lists.jboss.org/mailman/listinfo/keycloak-user">https://lists.jboss.org/mailman/listinfo/keycloak-user</a></pre>
</blockquote>
<br>
</body>
</html>