[IDM] eduPersonAssurance usage

Keith Hazelton hazelton at wisc.edu
Tue Feb 26 10:16:19 EST 2013

The recommended way to do this in SAML (Shib etc) is with Authentication Context, not as an attribute in the SAML attribute assertion.   --Keith
On Feb 26, 2013, at 09:13:40, Francis Swasey wrote:

> I am being asked to approve the usage of the eduPersonAssurance attribute to tell our webauth implementation how it should authenticate (which process - simple password, one-time password (SecurID, UbiKey, etc), Radius) the person to the various web applications webauth is protecting.
> Is this a valid use of the eduPersonAssurance attribute?  It is not how I was thinking that this attribute would be used. 
> Thanks,
> --
> Frank Swasey                    | http://www.uvm.edu/~fcs
> Sr Systems Administrator        | Always remember: You are UNIQUE,
> University of Vermont           |    just like everyone else.
> "I am not young enough to know everything." - Oscar Wilde (1854-1900)

More information about the users mailing list