Shibboleth 2.4.3 SAML2 and WAYF

Peter Schober peter.schober at
Fri Jan 13 16:25:48 GMT 2012

* Law, Bob <Robert.Law at> [2012-01-13 17:10]:
> I have just compiled the 2.4.3 version of shibboleth to incorporate
> SAML2 due to and IDP we are trying to allow to access our site.  We are
> running as an SP and have been for a number of years.  When we updated
> to version 2.2 we continued to use our home grown WAYF.  When our WAYF
> is redirecting to the site to get the login, we are not sending them a
> SAML2 request.  Everything is working fine with our other customers
> using saml1 and our wayf.  Does anyone have the correct configuration we
> are trying to implement with one site being saml2 and the others being
> saml1?

For SAML2 you'll need to implement the SAML DS protocol, not the
legacy wAYF protocol.

More information about the users mailing list