Univention Bugzilla – Bug 39455
On update SAML domain sso is not set up correctly when SAML App was installed
Last modified: 2015-11-17 12:12:06 CET
When updating to UCS 4.1 and the SAML App was installed, the domain SSO is not set up correctly. The join scripts currently do not overwrite the UCR variables with the ucs-sso.$domainname setting and no new certificate will be generated. We can not simply overwrite these settings, that would break the old SAML configuration one had with service providers.
Unset certificate UCRVs in univention-saml.postinst leads to default UCS SAML setup. No update path available, as we require new certificates from the ucsCA. A note was added to the release notes. r64944 univention-saml 3.0.25-2.88.201510281614 r64946 release notes
Yes it works like expected.
UCS 4.1 has been released: https://docs.software-univention.de/release-notes-4.1-0-en.html https://docs.software-univention.de/release-notes-4.1-0-de.html If this error occurs again, please use "Clone This Bug".