employeeNumber from employeeID in active directory
Brent Putman
putmanb at georgetown.edu
Tue Sep 6 22:26:18 BST 2011
On 9/6/11 3:58 PM, Jean Robertson wrote:
> I have an attribute-resolver.xml snippet that looks like this:
>
> <resolver:AttributeDefinition id="employeeNumber"
> xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
> sourceAttributeID="employeeID">
> <resolver:Dependency ref="myLDAP" />
>
> <resolver:AttributeEncoder xsi:type="SAML1String"
> xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
> name="urn:mace:dir:attribute-def:employeeNumber" />
>
> <resolver:AttributeEncoder xsi:type="SAML2String"
> xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
> name="urn:oid:2.16.840.1.113730.3.1.3"
> friendlyName="employeeNumber" />
> </resolver:AttributeDefinition>
>
At first glance that looks ok. Did you remember to also add or update a
rule to attribute-filter.xml to actually release the attribute to the
SP(s) you are using to test?
More information about the users
mailing list