custom attribute question
Daksh Chauhan
um.daksh at gmail.com
Thu Nov 15 16:39:08 EST 2012
Hello,
We have Shibboleth IdP 2.3.8 running on SuSE Linux Enterprise 11 - SP2
(64-bit)
We have a custom attribute defined in LDAP to store Email-aliases and need
help to configure this in Shibboleth.
I am following this guide:
https://wiki.shibboleth.net/confluence/display/SHIB2/ResolverSimpleAttribute
Definition
Following is in my "attribute-resolver.xml"
<resolver:AttributeDefinition xsi:type="ad:Simple"
id="emailalias" sourceAttributeID="emailalias">
<resolver:Dependency ref="myLDAP" />
</resolver:AttributeDefinition>
And following is in "attribute-filter.xml":
<afp:AttributeRule attributeID="emailalias">
<afp:PermitValueRule xsi:type="basic:ANY" />
</afp:AttributeRule>
I know this attribute is released by LDAP for the user shibboleth is using
for bind, but when I run aacli.sh I do not see this attribute in the result.
I would like to make sure that what I have in config files is correct and if
the guide I am following is correct one to use?
Note: I have also tried following in attribute-resolver.xml, but that did
not make any difference:
<resolver:AttributeDefinition xsi:type="Simple"
xmlns="urn:mace:shibboleth:2.0:resolver:ad"
id="emailalias" sourceAttributeID="emailalias">
<resolver:Dependency ref="myLDAP" />
</resolver:AttributeDefinition>
Any guidance is greatly appreciated,
Thanks!
More information about the users
mailing list