Copy your current kentor.authservices configuration

Note: This prerequisite is for those customers that integrate FlexNet Manager Suite with SAML Service Provider for SSO authentication.

If you wish to configure Security Assertion Markup Language (SAML) authentication, please refer to the Authentication chapter in the FlexNet Manager Suite Systems Reference guide.

For FlexNet Manager Suite 2022 R1, the kentor.autherservices section has been deleted and replaced with a new sustainsys.saml2 section. This means, you will lose all details pertaining to the current mechanism you have authenticated for your identity provider.

Prior to upgrading, you will need to make a copy of your current kentor.authservices configuration from the web.config file. After the upgrade is complete, the current kentor.authservices configuration needs to be applied to the new sustainsys.saml2 section in the web.config file.

Attributes and properties remain the same, and no values need to be updated. All that is required, is a copy and paste of the kentor.authservices configuration from the FlexNet Manager Suite version you upgraded from, to the new sustainsys.saml2 section in the web.config file after upgrade.

By default, the web.config file is located on your web application server (or, in a single-server implementation, your application server) in drive:\\Program Files (x86)\Flexera Software\FlexNet Manager Platform\WebUI.

Below is an example of the values entered into the kentor.authservices section of the web.config file, when using the identity provider Okta. Note: All instances of kentor.authservices are replaced with sustainsys.saml2 after upgrading to FlexNet Manager Suite 2022 R1.

<kentor.authServices entityId="http://localhost:62500/AuthServices" 
  returnUrl="http://localhost:62500/" 
  authenticateRequestSigningBehavior="Always">
  <identityProviders>
   <add entityId="http://www.okta.com/exk8cq8c02Kg1OVRl0h7"
    signOnUrl="https://dev-271049.oktapreview.com/app/flexerasoftwaredev717079_markslocalfnms_1/exk8cq8c02Kg1OVRl0h7/sso/saml/"
    allowUnsolicitedAuthnResponse="true" 
    binding="HttpRedirect"
    loadMetadata="true"
    metadataLocation="https://dev-271049.oktapreview.com/app/exk8cq8c02Kg1OVRl0h7/sso/saml/metadata">
    <signingCertificate fileName="~/App_Data/okta.cert"/>
   </add>
  </identityProviders>
  <serviceCertificates>
    <add fileName="~/App_Data/Kentor.AuthServices.Tests.pfx"/>
  </serviceCertificates> 
</kentor.authServices>

Note: After upgrading, the authentication method in the web.config file is reset to "Default". Ensure that the authenticationType attribute in the signOn element is set to Saml.

Original: <signOn authenticationType="Default" allowSelfSigned="true">

Updated: <signOn authenticationType="Saml" allowSelfSigned="true">

FlexNet Manager Suite (On-Premises)

2024 R1