Juniper and SAML Authentication

Hello, I am trying to add SAML (Shibboleth) authentication to my Juniper site and I believe I have everything setup, however the IDP I want to sign in with does not show up on the login page, nor does the page I get the LMS UI with the page not found error message.

I am not seeing anything in the lms logs that talk about it.

The following options are set in my server-vars.yml


The IDP configuration appears correct, and is pulling metadata nightly via celery.

I have tried setting the private/public key in the django SAML configuration as well as leaving it blank and having it utilize the variables above stored in the lms config files in juniper.

For Organization Info box I have the following:

“en-US”: {
“url”: “”,
“name”: “ksul_nla_openedx”,
“displayname”: “NLA OpenEdx”

and for Other config str I have:

“wantAssertionsSigned”: true,
“requestedAuthnContext”: true,
“metadataCacheDuration”: 604800,
“wantAssertionsEncrypted”: true,
“authnRequestsSigned”: true

Any ideas what else to check or try would be greatly appreciated. Thank you!

Ok, I think I have it almost working. Apparently the slug for the profile has to be “default”.

I found this post (Missing metadata.xml while configuring SAML third party auth on Ironwood edx) that talks about it.

I am now able to access the metadata but the ACS url being generated is http instead of https. Any idea on how I can change this?

Looks like I am getting a little closer, but this is partially due to the ACS being http.

Error Details:
Authentication failed: SAML login failed: [‘invalid_response’] (The response was received at instead of

Studio/LMS are both running on port 443 through nginx, so not sure where the 8000 is coming from.

Added later

Just putting these here. I had to enable the following:

I set these values and it works now with any mixed content errors.


Once I did this, the urls were generated with https.


Glad to hear you got it working, and thanks so much for posting your solution! I’m sure some future people with the same problem will really appreciate it.

1 Like