Apache SAML configuration Skip to main content
https://support.okta.com/help/answers?id=906f0000000hzxsiac&refurl=http%3a%2f%2fsupport.okta.com%2fhelp%2fanswers
How satisfied are you with the Okta Help Center?
Thank you for your feedback!
How satisfied are you with the Okta Help Center?
1
2
3
4
5
Very Dissatisfied
Very satisfied
Enter content less than 200 characters.
Ask Search:
Parth SwadasParth Swadas 

Apache SAML configuration

Hello,

We are integrating our internal application with mod_auth_mellon Apache module. Ref URL : http://mkchendil.blogspot.se/2015/03/okta-integration-with-apache-usingmodauthmellon.html
Our application supports dynamic URL. Is it possible to configure SSO with Dynamic URL and mod_auth_mellon module.

/Parth
Best Answer chosen by Parth Swadas
Jaypee ManansalaJaypee Manansala (Okta)
Hi Parth,

Thanks for posting your inquiries in Okta Community.

MellonEndpointPath and the directory which Mellon is protecting should be different. You need to edit the configuration file for your web server. Depending on your distribution, it may be named '/etc/apache/httpd.conf' or something different. You need to add a LoadModule directive for mod_auth_mellon. This will look similar to this: LoadModule auth_mellon_module /usr/lib/apache2/modules/mod_auth_mellon.so To find the full path to mod_auth_mellon.so, you may run:

apxs2 -q LIBEXECDIR

This will print the path where Apache stores modules. mod_auth_mellon.so will be stored in that directory. You will also need to make sure that Apache's authn_core module is also enabled. Most likely you also want authz_user to be enabled. After you have added the LoadModule directive, you must add configuration for mod_auth_mellon.

For more detailed information: https://github.com/UNINETT/mod_auth_mellon

Please let me know if you need any additional information or call Okta Support for more information. Thank you.

Best,

JP

All Answers

Jaypee ManansalaJaypee Manansala (Okta)
Hi Parth,

Thanks for posting your inquiries in Okta Community.

MellonEndpointPath and the directory which Mellon is protecting should be different. You need to edit the configuration file for your web server. Depending on your distribution, it may be named '/etc/apache/httpd.conf' or something different. You need to add a LoadModule directive for mod_auth_mellon. This will look similar to this: LoadModule auth_mellon_module /usr/lib/apache2/modules/mod_auth_mellon.so To find the full path to mod_auth_mellon.so, you may run:

apxs2 -q LIBEXECDIR

This will print the path where Apache stores modules. mod_auth_mellon.so will be stored in that directory. You will also need to make sure that Apache's authn_core module is also enabled. Most likely you also want authz_user to be enabled. After you have added the LoadModule directive, you must add configuration for mod_auth_mellon.

For more detailed information: https://github.com/UNINETT/mod_auth_mellon

Please let me know if you need any additional information or call Okta Support for more information. Thank you.

Best,

JP
This was selected as the best answer
Parth SwadasParth Swadas
Hi @Jaypee Manansala (Okta),

Thanks for your response.

Can you please document the changes required for Apache SAML SSO implementation using mod_auth_mellon module on the OKTA developer site.. This will help OKTA customers to integrate apache applications as well.

/Parth