This article describes how to easily configure a SAML Identity Provider(IDP) without any provider configuration. This is based on this free Samling tool: https://fujifish.github.io/samling

  1. configure your SAML IDP like this :
    •  Identity Provider Public Key : 1-----BEGIN CERTIFICATE----- 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 3-----END CERTIFICATE----- 
    • SSO Endpoint : 
      https://fujifish.github.io/samling/samling.html
    • Identity provider entity ID : 
      https://fujifish.github.io/samling/samling.html
    • Roles attribute is the one of your choice : 
      <groups>
  2. Test using the upper right corner test button → Start Test → right click on the Log in link and open in a brand new incognito window :
  3. This authentication page appears, give the username of your choice :  
  4. On the same page, scroll down to give <groups> to your user using the same attribute as the one defined in your Idp configuration:
  5. Click Next on the upper right corner of this same page :  
  6. Click on the Post Response! :  
  7. You are automatically redirected to our Welcome Page :  


Note: This tool also helps in playing with signatures, groups retrieving, or SAML traces before posting the response (traces can be updated). The customer should have 
installed SAML Tracer Add-on on their browser to compare with their actual SAML responses.