Wrong user name being passed
Cantor, Scott
cantor.2 at osu.edu
Wed Apr 23 13:53:02 EDT 2014
On 4/23/14, 1:11 PM, "P Diak" <pete_diak at hotmail.com> wrote:
>
>Everything is working fine, but at login my user name is showing as
>peted. I want just Pete.
>Trying to figure out why the principal name is being used as the
>givenName. Ideas?
How do you know that it is? Why are you assuming givenName is involved?
Your sample below is not showing a SAML Attribute element. Unless maybe
you mean that the source of the data being sent in your directory is
itself givenName.
>Also, I'm new to Shibboleth, I figure this is probably something simple.
It will not be simple if you don't find the documentation itself
understandable. You may well not, but it's all we have.
https://wiki.shibboleth.net/confluence/display/SHIB2/IdPAddAttribute
https://wiki.shibboleth.net/confluence/display/SHIB2/IdPNameIdentifier
>Also, here is a snippet from a SAML tracer trace:
That is not givenName in SAML terms, it's a NameID (name identifier)
configured with a poor choice of Format and set to include whatever data
you happen to be feeding it to populate the identifier with. The second
link above describes how you end up configuring things to do that.
The starting point here is not really the IdP but the SP. What does the SP
require? What SAML attributes or faling that, what NameID format(s) does
it want to receive? Until you know that, you don't have sufficient
information to configure the IdP to do what you need.
-- Scott
More information about the users
mailing list