Migration from SAML1 to SAML2 and InCommon
Cantor, Scott
cantor.2 at osu.edu
Thu Feb 28 16:37:56 EST 2013
On 2/28/13 4:22 PM, "Tom Scavo" <trscavo at gmail.com> wrote:
>On Thu, Feb 28, 2013 at 4:14 PM, Chris Peters <cjpeters at uci.edu> wrote:
>>
>> I was wondering if anyone has any advice how to approach this
>>transition and
>> if anyone had dealt with this specific issue in the past.
>>
>> I found this page on UnsolicitiedSSO
>> https://wiki.shibboleth.net/confluence/display/SHIB2/IdPUnsolicitedSSO,
>>and
>> I can't find it anymore but there was a page suggesting using it as a
>>method
>> to ease the transition.
>
>Is this the page you're looking for?
>
>https://spaces.internet2.edu/x/YpmKAQ
(That is the page I was thinking of in my response.)
The warning to keep in mind is just that if you're in the situation I am,
and the OP is, you have an "accidentally" safe environment of SPs running
old versions. Once you make that change to the metadata they see, they
become instantly vulnerable to the attack that was fixed a year and a half
ago.
-- Scott
More information about the users
mailing list