First of all, install “SSO & SAML authentication” app to NextCloud.
For unique id we are using `eduPersonPrincipalName` from LDAP server.
Also we’ll be using users Full name and email, so add `displayName` and `mail` attributes to “Attribute mapping”.
Specify metadata and SSo service URLs.
For SimpleSAMLphp metadata, this should be enough:
$metadata['https://nextcloudURL/index.php/apps/user_saml/saml/metadata'] = array( 'NameIDFormat' => 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient', 'AssertionConsumerService' => 'https://nextcloudUR/index.php/apps/user_saml/saml/acs', 'attributeencodings' => array('objectSid' => 'base64'), 'authproc' => array( 0 => array( 'class' => 'core:AttributeLimit', 'mail', 'eduPersonPrincipalName','displayName', ), ), );
thank you for this post. You help me with saml sso.