Transport confidentiality required, but not available
Tom Scavo
trscavo at gmail.com
Fri Sep 2 14:06:10 BST 2011
On Fri, Sep 2, 2011 at 8:22 AM, Rod Widdowson <rdw at steadingsoftware.com> wrote:
>
> But if you *do* own the IdP then you should ensure either that that code to do attribute push is turned off and the metadata entries
> suppressed, or that you get it working.
Yes, and of the two, the IdP's metadata is most important. If there is
no AttributeAuthorityDescriptor in metadata, the SP will not (or
should not, I can't vouch for all SPs) make the query.
Tom
More information about the users
mailing list