IDP initiated SSO

Susan Forr susan_forr at
Tue Aug 7 16:21:22 EDT 2012

I found a person trying to implement a similar use case. I know this is not the typical usecase for and IDP initiated SSO. The IDP expects the user to authenticate with it. But this is not the case for us. My question is...can Shibboleth IDP make it easier for me to implement this use case or do I need to write my own SAML assertion provider. It would be great if I could use Shibboleth IDP to generate the assertion. Any guidance is appreciated.
 From: paul.hethmon at
To: users at
Subject: Re: IDP initiated SSO
Date: Tue, 7 Aug 2012 00:35:17 +0000


I'd recommend some reading material to help you understand better what SAML does as an SSO protocol:

OASIS SAML Committee:

Executive Overview:

Technical Overview:

Definitely read the executive overview, it's only about 8 pages.



To unsubscribe from this list send an email to users-unsubscribe at 		 	   		  
-------------- next part --------------
An HTML attachment was scrubbed...

More information about the users mailing list