Transport confidentiality required, but not available

Tom Scavo trscavo at
Fri Sep 2 14:06:10 BST 2011

On Fri, Sep 2, 2011 at 8:22 AM, Rod Widdowson <rdw at> wrote:
> But if you *do* own the IdP then you should ensure either that that code to do attribute push is turned off and the metadata entries
> suppressed, or that you get it working.

Yes, and of the two, the IdP's metadata is most important. If there is
no AttributeAuthorityDescriptor in metadata, the SP will not (or
should not, I can't vouch for all SPs) make the query.


More information about the users mailing list