website/integrations: Update Zammad SAML Instructions

[pacohope]

Details

I just configured Zammad 6.4.1 to work with Authentik 2025.4.1. There seem to have been some changes since these instructions were written. Zammad does not allow the Name ID Format to be blank. The SSO URL and the logout URL were incorrect. I was getting an Error 422 from Zammad until I turned on signing assertions, so I conclude that is required and I wrote instructions for that. I saw some discussion online elsewhere that the ----BEGIN and ---END lines should be removed. I tested it both ways and it worked both ways. I wrote the instructions to keep those lines in because it seemed simplest and most intuitive.

---

If applicable

• The documentation has been updated
• The documentation has been formatted (make website)

[netlify]

✅ Deploy Preview for authentik-docs ready!

Name	Link
🔨 Latest commit	6d87c3c
🔍 Latest deploy log	https://app.netlify.com/projects/authentik-docs/deploys/683df2d81671370008fb0263
😎 Deploy Preview	https://deploy-preview-14774--authentik-docs.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[netlify]

✅ Deploy Preview for authentik-storybook canceled.

Name	Link
🔨 Latest commit	6d87c3c
🔍 Latest deploy log	https://app.netlify.com/projects/authentik-storybook/deploys/683df2d89e12f1000814d10a

[dewi-tik]

Thanks for the contribution @pacohope. Appreciate it very much.

I've requested a few changes.

I also suspect that the property mappings aren't required and that the built-in authentik default SAML Mapping: Name and authentik default SAML Mapping: Email property mappings would be sufficient. authentik default SAML Mapping: Email could be used for NameID:

However I don't have a zammad instance to test this on at the moment.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 92.76%. Comparing base (8750551) to head (6d87c3c).
Report is 18 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main   #14774   +/-   ##
=======================================
  Coverage   92.76%   92.76%           
=======================================
  Files         817      817           
  Lines       42197    42197           
=======================================
  Hits        39142    39142           
  Misses       3055     3055           

Flag	Coverage Δ
e2e	47.55% <ø> (ø)
integration	24.38% <ø> (ø)
unit	90.65% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[pacohope]

I've accepted all the recommended changes. I saw your comment about how the custom properties might not be necessary. I went to my Zammad provider on my authentik instance and removed them, and I could still login successfully. I created a new user in authentik, signed in with that user in Zammad and it worked successfully. I know it's basically just one person saying "works on my machine" but I think you're right: the customer properties aren't necessary. I made one more change to remove the references to them.

[dominic-r]

Hey @pacohope, thanks for your contribution. I added a few suggestions to conform to the style guide and a quick little rewrite of "Automatic account link on initial logon". Please do let me know if you have any questions!

[pacohope]

I accepted all the changes. Thanks for your help.

[dominic-r]

LGTM. Thanks

[tanberry]

Thanks @pacohope and sorry it took us a while to get the build issues sorted.. should be good to go now.

I communicated with Dewi, he is good with the updates.

[gergosimonyi]

/cherry-pick version-2025.6