Authentication with unsupported SAML provider


#1

Is it possible to use a SAML provider for authentication that is not officially supported? Rancher seems to support PingIdentity and KeyCloak on this side, but shouldn’t in theory this work for any other provider that implements the SAML protocol?


#2

Yes, it’s just not tested/validated/supported. See https://mattslifebytes.com/2018/08/15/using-okta-and-other-saml-idps-with-rancher-2-0/ for a reference.