NameID Decoding
James Bardin
jbardin at bu.edu
Thu Sep 8 01:01:22 BST 2011
On Wed, Sep 7, 2011 at 7:36 PM, It Meme <it.meme01 at gmail.com> wrote:
> Why would an application, like service-now, keen on the NameId?
>
Yeah, Service-now ignores all SAML attributes, and only takes the
NameID from the Subject.
You need to create a new Attribute Definition, and encode an email or
username for them using a different format.
<resolver:AttributeEncoder
xsi:type="SAML2StringNameID"
xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
nameFormat="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified" />
--
James Bardin <jbardin at bu.edu>
Systems Engineer
Boston University IS&T
More information about the users
mailing list