Hi There -
I’m looking to sync some AAD accounts over to WS1 for admin access.
The ask is:
UEM Admins have an account in AAD, we want to use the same AAD accounts and password to login to WS1 (Airwatch).
The UEM Admin accounts would be assigned a group in AAD then have that group synced to WS1(Airwatch).
How do I integrate the two (WS1 and Azure AAD).
We are not using OnPrem AD. AAD accounts only.
By default (follow the two vendor instructions, it would leave SAML REPLY URL as blank, with same error. I’ve tried many permutations of the reply url - all fail with same error.
This is what I’m using .awmdm.com/AirWatch/SAML/AssertionService.ashx?binding=HttpPost
Note: The above reply URL is for auth to WSO (AirWatch portal) if you look through the metadata there are other endpoints that need to be added if you’re enabling federation for other services
If I try to hit it directly from the browser here is the response.
The SAML response is missing form variables SAMLResponse and RelayState, required by the SAML protocol.
In WSO if you “Export Service Provider Settings” it should give you an XML with all the endpoints for various services.