Shibboleth Third Party Integration
Curry, Warren
whcurry at ufl.edu
Thu Nov 29 08:01:00 EST 2012
Max, well said without the agreements and frameworks established the advantages of InCommon Trust fabric the technology has much less value..
Warren H. Curry
UFIT - Identity Access Management
Have a great day!!!
-----Original Message-----
From: users-bounces at shibboleth.net [mailto:users-bounces at shibboleth.net] On Behalf Of Mark K. Miller
Sent: Wednesday, November 28, 2012 5:07 PM
To: Shib Users
Subject: Re: Shibboleth Third Party Integration
On Wed, 28 Nov 2012, Peter Schober wrote:
> * Abba Yadav <APY at usp.org> [2012-11-28 17:06]:
>> We are putting together a RFP document for a third party application
>> and want to make sure that it can integrate with our Shibboleth IDp.
>> What are the things that the third party cloud application should
>> support so that it can be integrated with Shibboleth?
>
> It should support all the SAML protocol bindings and profiles you
> intend on using, -peter
Of course, there's more than just the technical details of SAML to achieve application functionality.
Your IdP provides the data that represents identities and their attributes. That representation must be clearly defined and agreed upon.
That's why the eduPerson schema is my friend!
Also, there is the whole trust framework between your IdP and the SPs that offer the applications you want to use. In it's simplest form this is "just" exchanging good metadata. (Oh, what an understatement!) This is why I'm so happy to be a participant in the InCommon Federation.
Hope that helps,
Max
--
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
More information about the users
mailing list