Differences

This shows you the differences between two versions of the page.

--- documentation:latest:cli_examples [2019/05/17 14:53]
coudot [Configure SAML Identity Provider]
+++ documentation:latest:cli_examples [2019/11/22 19:21] (current)
@@ Line 2: / Line 2: @@
 This page shows some examples of LL::NG Command Line Interface. See [[configlocation#command_line_interface_cli|how to use the command]].
+===== Save/restore configuration =====
+This part requires LLNG 2.0.5 at least.
+Save:
+<code sh>
+/usr/share/lemonldap-ng/bin/lemonldap-ng-cli save >config.json
+</code>
+Restore:
+<code shell>
+/usr/share/lemonldap-ng/bin/lemonldap-ng-cli restore config.json
+# Or
+/usr/share/lemonldap-ng/bin/lemonldap-ng-cli restore - <config.json
+</code>
 ===== Configure HTTPS =====
@@ Line 11: / Line 27: @@
     set \
         portal https://auth.example.com \
+        mailUrl https://auth.example.com/resetpwd \
+        registerUrl https://auth.example.com/register \
         https 1 \
         securedCookie 1
@@ Line 189: / Line 207: @@
 </code>
-Import them in configuration:
+Fix the certificate key format (you can skip this step if you are running >= 2.0.6)
 <code>
-/usr/share/lemonldap-ng/bin/lemonldap-ng-cli -yes 1 \
+sed -e "s/END PRIVATE/END RSA PRIVATE/" \
-    set \
+    -e "s/BEGIN PRIVATE/BEGIN RSA PRIVATE/" \
-        samlServicePrivateKeySig "`cat saml.key`" \
+    -i saml.key
-        samlServicePublicKeySig "`cat saml.pem`"
 </code>
-Activate the SAML Issuer:
+Import them in configuration and activate the SAML issuer
 <code>
 /usr/share/lemonldap-ng/bin/lemonldap-ng-cli -yes 1 \
     set \
+        samlServicePrivateKeySig "`cat saml.key`" \
+        samlServicePublicKeySig "`cat saml.pem`" \
         issuerDBSAMLActivation 1
 </code>
@@ Line 329: / Line 348: @@
 </code>
+===== Encryption key =====
+To update the master encryption key:
+<code>
+/usr/share/lemonldap-ng/bin/lemonldap-ng-cli -yes 1 \
+    set \
+        key 'xxxxxxxxxxxxxxx'
+</code>