Shibboleth Third Party Integration

Curry, Warren whcurry at
Thu Nov 29 08:01:00 EST 2012

Max, well said without the agreements and frameworks established the advantages of InCommon Trust fabric the technology has much less value..  

Warren H. Curry
UFIT - Identity Access Management

Have a great day!!!

-----Original Message-----
From: users-bounces at [mailto:users-bounces at] On Behalf Of Mark K. Miller
Sent: Wednesday, November 28, 2012 5:07 PM
To: Shib Users
Subject: Re: Shibboleth Third Party Integration

On Wed, 28 Nov 2012, Peter Schober wrote:

> * Abba Yadav <APY at> [2012-11-28 17:06]:
>> We are putting together a RFP document for a third party application 
>> and want to make sure that it can integrate with our Shibboleth IDp. 
>> What are the things that the third party cloud application should 
>> support so that it can be integrated with Shibboleth?
> It should support all the SAML protocol bindings and profiles you 
> intend on using, -peter

Of course, there's more than just the technical details of SAML to achieve application functionality.

Your IdP provides the data that represents identities and their attributes.  That representation must be clearly defined and agreed upon. 
That's why the eduPerson schema is my friend!

Also, there is the whole trust framework between your IdP and the SPs that offer the applications you want to use.  In it's simplest form this is "just" exchanging good metadata.  (Oh, what an understatement!)  This is why I'm so happy to be a participant in the InCommon Federation.

Hope that helps,

To unsubscribe from this list send an email to users-unsubscribe at

More information about the users mailing list