Feature Request: Support SAML authentication

[airmnichols]

In our environment, we authenticate administrators to Infoblox using SAML authentication to Microsoft Entra ID (Azure Active Directory).

It would be nice for admins to be able to use their Entra ID accounts to use this PowerShell module.
This also enhances security as Entra ID will require Multi-Factor Authentication to get a SAML token.

Currently we need to use a Infoblox local administrator account to use the module which is not ideal.

Other PowerShell modules that support Microsoft Entra ID SAML authentication spawn an interactive web browser window from PowerShell to authenticate to Entra ID and get the SAML token to be used to authenticate.

[rmbolger]

Hi @airmnichols, thanks for reaching out. Unfortunately, the Infoblox WAPI doesn't currently support authenticating via SAML even in the latest NIOS 9.0.x versions. It only supports Basic Auth with explicit credentials or client certificate based auth.

If you want to verify on your current version, there's a Transport and Authentication section in the WAPI docs hosted directly on the grid master:
https://gridmaster.example.test/wapidoc/index.html#transport-and-authentication

It's also possible to create SAML users as SAML/Local instead of SAML Only such that they have a local password that can be used with WAPI but still use SAML for web UI login and permissions are consistent.