Revert "F OpenNebula/one#6496: New SAML documentation (#236)"

rsmontero · rsmontero · commit 8a900d484e47 · 2025-07-16T10:03:22.000+02:00
This reverts commit 08b7418.
diff --git a/content/product/cloud_system_administration/authentication_configuration/overview.md b/content/product/cloud_system_administration/authentication_configuration/overview.md
@@ -12,7 +12,7 @@ weight: "1"
 
 <!--# Overview -->
 
-OpenNebula comes with a default internal user authentication system based on username/password, where information and secrets are stored in the OpenNebula (see the [Users & Groups Subsystem guide]({{% relref "../multitenancy/auth_overview#auth-overview" %}})). Dedicated external user authentication drivers can be used to leverage additional authentication mechanisms or sources of information about the users (e.g., LDAP, SAML). This chapter describes the available user authentication and management options.
+OpenNebula comes with a default internal user authentication system based on username/password, where information and secrets are stored in the OpenNebula (see the [Users & Groups Subsystem guide]({{% relref "../multitenancy/auth_overview#auth-overview" %}})). Dedicated external user authentication drivers can be used to leverage additional authentication mechanisms or sources of information about the users (e.g., LDAP). This chapter describes the available user authentication and management options.
 
 ## Authentication
 
@@ -22,13 +22,12 @@ In this figure you can see three authentication configurations you can customize
 
 **a) CLI/API Authentication**
 
-You can choose from the following authentication drivers to access OpenNebula:
+You can choose from the following authentication drivers to access OpenNebula from the command line:
 
 - [Built-in User/Password and token authentication]({{% relref "../multitenancy/manage_users#manage-users" %}})
 - [SSH Authentication]({{% relref "ssh#ssh-auth" %}})
 - [X.509 Authentication]({{% relref "x509#x509-auth" %}})
 - [LDAP Authentication]({{% relref "ldap#ldap" %}})
-- [SAML Authentication]({{% relref "saml#saml" %}})
 
 **b) Sunstone Authentication**
 
@@ -58,7 +57,7 @@ Usable only with API and CLI:
 * [SSH Authentication]({{% relref "ssh#ssh-auth" %}})
 
 Usable only with Sunstone:
-* [SAML Authentication]({{% relref "saml#saml" %}})
+
 * [Sunstone Authentication]({{% relref "sunstone_auth#sunstone-auth" %}})
 
 ## Hypervisor Compatibility
diff --git a/content/product/cloud_system_administration/authentication_configuration/saml.md b/content/product/cloud_system_administration/authentication_configuration/saml.md
diff --git a/content/product/cloud_system_administration/authentication_configuration/sunstone_auth.md b/content/product/cloud_system_administration/authentication_configuration/sunstone_auth.md
@@ -5,7 +5,7 @@ description:
 categories:
 pageintoc: "126"
 tags:
-weight: "6"
+weight: "5"
 ---
 
 <a id="sunstone-auth"></a>
diff --git a/content/product/cloud_system_administration/multitenancy/manage_users.md b/content/product/cloud_system_administration/multitenancy/manage_users.md
@@ -55,7 +55,7 @@ username = [" ", ":", "\t", "\n", "\v", "\f", "\r"]
 password = [" ", "\t", "\n", "\v", "\f", "\r"]{{< /alert >}}  
 ```
 
-Some auth drivers do not require passwords (ldap, saml); in this case a user can be created without it:
+Some auth drivers do not require passwords (ldap); in this case a user can be created without it:
 
 ```default
 $ oneuser create --driver ldap <user_name>
diff --git a/content/product/integration_references/infrastructure_drivers_development/devel-auth.md b/content/product/integration_references/infrastructure_drivers_development/devel-auth.md
@@ -88,13 +88,13 @@ To be able to use the new driver we need to add its name to the list of enabled
 ```default
 AUTH_MAD = [
     executable = "one_auth_mad",
-    authn = "ssh,x509,ldap,server_cipher,server_x509,saml,length"
+    authn = "ssh,x509,ldap,server_cipher,server_x509,length"
 ]
 ```
 
 ## Managed Groups
 
-The authentication driver may also assign users to groups, this requires the `DRIVER_MANAGED_GROUPS` option to be set to `YES`, e.g., like for the `ldap` or `saml` drivers
+The authentication driver may also assign users to groups, this requires the `DRIVER_MANAGED_GROUPS` option to be set to `YES`, e.g., like for the `ldap` driver
 
 ```default
 AUTH_MAD_CONF = [
diff --git a/content/product/operation_references/opennebula_services_configuration/oned.md b/content/product/operation_references/opennebula_services_configuration/oned.md
@@ -558,7 +558,7 @@ Sample configuration:
 ```default
 AUTH_MAD = [
     executable = "one_auth_mad",
-    authn = "ssh,x509,ldap,server_cipher,server_x509,saml"
+    authn = "ssh,x509,ldap,server_cipher,server_x509"
 ]
 
 SESSION_EXPIRATION_TIME = 900
@@ -568,7 +568,7 @@ SESSION_EXPIRATION_TIME = 900
 DEFAULT_UMASK = 177
 ```
 
-The `DEFAULT_AUTH` can be used to point to the desired default authentication driver, for example `ldap` or `saml`:
+The `DEFAULT_AUTH` can be used to point to the desired default authentication driver, for example `ldap`:
 
 ```default
 DEFAULT_AUTH = "ldap"
diff --git a/content/quick_start/understand_opennebula/cloud_architecture_and_design/cloud_architecture_design.md b/content/quick_start/understand_opennebula/cloud_architecture_and_design/cloud_architecture_design.md
@@ -68,7 +68,7 @@ Now you should have an OpenNebula cloud up and running with at least one virtual
 - **Networking setup** with [802.1Q VLANs]({{% relref "../../../product/cluster_configuration/networking_system/vlan#hm-vlan" %}}), [Open vSwitch]({{% relref "../../../product/cluster_configuration/networking_system/openvswitch#openvswitch" %}}) or [VXLAN]({{% relref "../../../product/cluster_configuration/networking_system/vxlan#vxlan" %}}).
 - **Storage setup** with [NFS/NAS datastore]({{% relref "../../../product/cluster_configuration/storage_system/nas_ds#nas-ds" %}}), [Local Storage datastore]({{% relref "../../../product/cluster_configuration/storage_system/local_ds#local-ds" %}}), [SAN datastore]({{% relref "../../../product/cluster_configuration/storage_system/lvm_drivers#lvm-drivers" %}}), [Ceph]({{% relref "../../../product/cluster_configuration/storage_system/ceph_ds#ceph-ds" %}}), [Dev]({{% relref "../../../product/cluster_configuration/storage_system/dev_ds#dev-ds" %}}), or [iSCSI]({{% relref "../../../product/cluster_configuration/storage_system/iscsi_ds#iscsi-ds" %}}) datastore.
 - **Host setup** with the configuration options for the [KVM hosts]({{% relref "../../../product/operation_references/hypervisor_configuration/kvm_driver#kvmg" %}}), [LXC hosts]({{% relref "../../../product/operation_references/hypervisor_configuration/lxc_driver#lxdmg" %}}), [Monitoring subsystem]({{% relref "../../../product/cloud_system_administration/resource_monitoring" %}}), [Virtual Machine HA]({{% relref "../../../product/control_plane_configuration/high_availability/vm_ha#ftguide" %}}) or [PCI Passthrough]({{% relref "../../../product/cluster_configuration/hosts_and_clusters/pci_passthrough#kvm-pci-passthrough" %}}).
-- **Authentication setup**, OpenNebula includes by default an internal **user/password authentication system**, but it can also use an external authentication driver such as [SSH]({{% relref "../../../product/cloud_system_administration/authentication_configuration/ssh#ssh-auth" %}}), [x509]({{% relref "../../../product/cloud_system_administration/authentication_configuration/x509#x509-auth" %}}), [LDAP]({{% relref "../../../product/cloud_system_administration/authentication_configuration/ldap#ldap" %}}), [SAML]({{% relref "../../../product/cloud_system_administration/authentication_configuration/saml#saml" %}}) or [Active Directory]({{% relref "../../../product/cloud_system_administration/authentication_configuration/ldap#ldap" %}}).
+- **Authentication setup**, OpenNebula includes by default an internal **user/password authentication system**, but it can also use an external authentication driver such as [SSH]({{% relref "../../../product/cloud_system_administration/authentication_configuration/ssh#ssh-auth" %}}), [x509]({{% relref "../../../product/cloud_system_administration/authentication_configuration/x509#x509-auth" %}}), [LDAP]({{% relref "../../../product/cloud_system_administration/authentication_configuration/ldap#ldap" %}}) or [Active Directory]({{% relref "../../../product/cloud_system_administration/authentication_configuration/ldap#ldap" %}}).
 
 ### 3.4. Configure Cloud Services
 
diff --git a/content/software/upgrade_process/configuration_management_ee/appendix.md b/content/software/upgrade_process/configuration_management_ee/appendix.md
@@ -23,7 +23,6 @@ managed by the `onecfg` tool:
 | ---------------------------------------------------------------- | ---------------------- |
 | `/etc/one/alertmanager/alertmanager.yml`                         | YAML                   |
 | `/etc/one/auth/ldap_auth.conf`                                   | YAML w/ ordered arrays |
-| `/etc/one/auth/saml_auth.conf`                                   | YAML                   |
 | `/etc/one/auth/server_x509_auth.conf`                            | YAML                   |
 | `/etc/one/auth/x509_auth.conf`                                   | YAML                   |
 | `/etc/one/az_driver.conf`                                        | YAML                   |
