Is there a way to use 2 name idendifiers?
Paul Hethmon
paul.hethmon at clareitysecurity.com
Mon Sep 12 16:00:28 BST 2011
Yes. You'll simply create multiple attribute definitions of type PrincipalName and given them each a unique ID. That's in attribute-resolver.xml. Then in attribute-filter.xml, you'll key on the SP entityID to release the appropriate nameID value. The wiki has full details.
Paul
--
Paul Hethmon
Chief Software Architect
Clareity Security, LLC
o) 865.824.1350
c) 865.250.3517
e) paul.hethmon at clareitysecurity.com
From: dave massie <dave.massie at gmail.com<mailto:dave.massie at gmail.com>>
Reply-To: Shibboleth Users <users at shibboleth.net<mailto:users at shibboleth.net>>
Date: Mon, 12 Sep 2011 10:52:05 -0400
To: Shibboleth Users <users at shibboleth.net<mailto:users at shibboleth.net>>
Subject: Is there a way to use 2 name idendifiers?
I am using shibb v2.1.5 and I want to create 2 name identifiers and I want to be able to send one of the name id's to one group of SP's and the other name id to another group of SP's.
Because we have no backend database, we are limited to using name ID types of unspecified.
Based on this, is it possible to "filter" name ID's such they are exposed to specific SP's?
Thanks,
Dave
-- To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net<mailto:users-unsubscribe at shibboleth.net>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://shibboleth.net/pipermail/users/attachments/20110912/16d303cd/attachment.html
More information about the users
mailing list