Is there a way to use 2 name idendifiers?
James Bardin
jbardin at bu.edu
Mon Sep 12 16:01:42 BST 2011
On Mon, Sep 12, 2011 at 10:52 AM, dave massie <dave.massie at gmail.com> wrote:
>
> I am using shibb v2.1.5 and I want to create 2 name identifiers and I want
> to be able to send one of the name id's to one group of SP's and the other
> name id to another group of SP's.
>
Absolutely. You can define new attributes in attribute-resolver.conf,
and use different id's to reference them. For a NameID, you just want
to make sure it's encoded as the type SAML2StringNameID
(SAML1StringNameIdentifier for SAML1).
Then you can release the the new attribute to the appropriate SP's in
attribute-filter.conf.
-jim
More information about the users
mailing list