IDP initiated SSO
Susan Forr
susan_forr at hotmail.com
Tue Aug 7 16:21:22 EDT 2012
I found a person trying to implement a similar use case. http://stackoverflow.com/questions/4998017/idp-initiated-web-sso-profile-using-java-and-saml-2-0?answertab=active#tab-top I know this is not the typical usecase for and IDP initiated SSO. The IDP expects the user to authenticate with it. But this is not the case for us. My question is...can Shibboleth IDP make it easier for me to implement this use case or do I need to write my own SAML assertion provider. It would be great if I could use Shibboleth IDP to generate the assertion. Any guidance is appreciated.
From: paul.hethmon at clareitysecurity.com
To: users at shibboleth.net
Subject: Re: IDP initiated SSO
Date: Tue, 7 Aug 2012 00:35:17 +0000
Susan,
I'd recommend some reading material to help you understand better what SAML does as an SSO protocol:
OASIS SAML Committee: http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=security
Executive Overview: http://www.oasis-open.org/committees/download.php/13525/sstc-saml-exec-overview-2.0-cd-01-2col.pdf
Technical Overview: http://www.oasis-open.org/committees/download.php/27819/sstc-saml-tech-overview-2.0-cd-02.pdf
Definitely read the executive overview, it's only about 8 pages.
thanks,
Paul
--
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://shibboleth.net/pipermail/users/attachments/20120807/aeedaa2d/attachment-0001.html
More information about the users
mailing list