Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Expand
  1. Locate the file: "C:\inetpub\wwwroot\web.config"
  2. Open it in a text editor
  3. Locate "<system.webServer>" in the file
  4. Insert the following rewrite rules, but make sure that you replace "dualshield.opensid.net" with the internal FQDN of your DualShield server, and "mail.deepnetid.com" with the external FQDN of your reverse proxy. You also need to change the lin line below

pattern="https://dualshield\.opensid\.net:8074/appsso/(login|logout)/*"

according to the internal FQDN of your DualShield server.

5. Save and restart the IIS server

Code Block
languagexml
titleReverse Proxy Rules
<system.webServer>
        <rewrite>
            <rules>
                <rule name="ssoReverseProxyInboundRule" stopProcessing="true">
                    <match url="appsso/(.*)" />
                    <action type="Rewrite" url="https://dualshield.opensid.net:8074/{R:0}" />
                </rule>
                <rule name="dpsInboundRule" stopProcessing="true">
                    <match url="(dps/.*)|(dps)" />
                    <conditions>
                    </conditions>
                    <action type="Rewrite" url="https://dualshield.opensid.net:8072/{R:0}" />
                </rule>
            </rules>
            <outboundRules>
                <rule name="externalSSO" preCondition="dps-saml-request" patternSyntax="ECMAScript">
                    <match filterByTags="Form" pattern="https://dualshield\.opensid\.net:8074/appsso/(login|logout)/*" />
                    <action type="Rewrite" value="https://mail.deepnetid.com/appsso/{R:1}" />
                </rule>
                <rule name="externalDPS" preCondition="sso-saml-response">
                    <match filterByTags="Form" pattern="https://dualshield.opensid.net:8072/dps/SAML/(.*)" />
                    <action type="Rewrite" value="https://mail.deepnetid.com/dps/SAML/{R:1}" />
                </rule>
                <preConditions>
                    <preCondition name="isHtml">
                        <add input="{RESPONSE_CONTENT_TYPE}" pattern="^text/html" />
                    </preCondition>
                    <preCondition name="dps-saml-request">
                        <add input="{RESPONSE_CONTENT_TYPE}" pattern="^text/html" />
                        <add input="{REQUEST_URI}" pattern=".*/dps.*" />
                    </preCondition>
                    <preCondition name="sso-saml-response">
                        <add input="{RESPONSE_CONTENT_TYPE}" pattern="^text/html" />
                        <add input="{REQUEST_URI}" pattern=".*/appsso/.*" />
                    </preCondition>
                </preConditions>
            </outboundRules>
        </rewrite>
    </system.webServer>


...