You are viewing limited content. For full access, please sign in.

Question

Question

Is there a minimum version of LFDS/LFDSSTS required to leverage SSO in Windows Client?

Directory Server Version 11 Administration Installation and Upgrades Feature
Updated September 8, 2022
asked on September 8, 2022

As you know, the Laserfiche 11 Windows Client added the ability to login via LFDSSTS. This version of the Windows Client is also backwards compatible with Laserfiche Server 10 (you can use the LF 11 Windows Client with a repository still at LFS 10.x).

 

I believe I've had the issue before where LFDSSTS Auth doesn't work with the LF 11 Windows Client if the LFDS/LFDSSTS version is prior to a certain release. For this, I'm leaning toward LFDS 10.4.3.

 

In other words, I'm think LFDS/LFDSSTS needs to be 10.4.3 or higher in order to leverage LFDSSTS Auth with the LF 11 Windows Client, but I'm unable to find any confirmed documentation anywhere.

 

It would make sense, since LFDS 10.4.3 was the release where it changed from using WCF bindings to HTTP/HTTPS bindings.

 

Has anyone else ran into this and/or able to confirm a minimum version of LFDS needed?

0 0

Replies

replied on September 8, 2022 Show version history

Dustin, I believe LFDS/LFDSSTS needs to be at version 11 to support desktop authentication as outlined in this KB article.

It states:

Laserfiche Directory Server 11 includes the following new features:

  • Support for STS sign-in to desktop applications and integrations, including SAML support.
2 0
replied on September 8, 2022

Blake, thanks for the article; I hadn't seen that yet.

 

However, I know for sure it works with LFDS 10.4.5, as that's what I have in my test environment.

Working in another environment, with LFDS 10.4.1, it's not working (choosing LFDSSTS Auth in the Windows Client just loads the page saying "An error has occurred").

 

My memory is telling me I've seen this before and we needed to get to at least LFDS 10.4.3, I just can't locate any past notes I have on it, and can't find any documented confirmation.

 

I believe upgrading to LFDS 10.4.5 or even LFDS 11 will correct the problem, as LFDSSTS Auth works with Forms and Web Client at the current version (10.4.1), just not with Windows Client. However, I wanted to get some sort of confirmation, ahead of upgrading, of the version being the actual issue (configuration all looks fine).

0 0
replied on September 8, 2022

No problem. I will add that "it works" and "it's supported" are two different things, as I know you are aware of. Because of that I would upgrade to LFDS 11 since that is the first version that supports the feature.

2 0
replied on September 8, 2022

Yes, upgrade to Directory Server 11 Update 2 (or latest available). At very minimum, that makes it 10x easier for LF Support to help you out and get a fix if necessary. Even if "supported", we do much more testing of LF 11 components with other LF 11 components than across major versions.

1 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...