honeymoose
/
OpenSearch
mirror of https://github.com/honeymoose/OpenSearch.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Applying changes for #61089 (#64601) (#64605)

This commit is contained in:
Adam Locke 2020-11-04 13:45:55 -05:00 committed by GitHub
parent 4c3300bf57
commit 1b9fe120d8
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
x-pack/docs/en/security/authentication/saml-guide.asciidoc
View File

@ -146,9 +146,12 @@ xpack.security.authc.realms.saml.saml1::
See <<realms>> for more explanation of realms.
order::
You should define a unique order on each realm in your authentication chain.
It is recommended that the SAML realm be at the bottom of your authentication
chain (that is, that it has the _highest_ order).
The order of the realm within the realm chain. Realms with a lower order
have highest priority and are consulted first. We recommend giving
password-based realms such as file, native, LDAP, and Active Directory the
lowest order (highest priority), followed by SSO realms such as SAML and
OpenID Connect. If you have multiple realms of the same type, give the most
frequently accessed realm the lowest order to have it consulted first.
idp.metadata.path::
This is the path to the metadata file that you saved for your Identity Provider.