servicenow SAML 2 integration

Michael R. Gettes gettes at
Thu May 8 11:39:34 EDT 2014

FWIW, I do not use saml2int… i find the people (vendors) i deal with tend
not to understand stuff.  (i’m trying to be nice here).  the servicenow guys
were certainly an exception - they had significant clue on real security issues
as well as UI and all sorts of stuff.  I enjoyed my interactions with them.  And,
those of you who know me, i’m a prick when it comes to vendors (no further comment
please, I know i tee’d one up for many of you).  If I ever need to really hit someone
over the head with standards and tech stuff, I’m gonna bring in other schools
and other experts cause just pointing to a document tends not to work these days…
again, this is my opinion and my experience on how I solve problems with vendors.
I find this to be a rather sad state of affairs.

I can certainly imagine others being more successful than I employing tools like


On May 8, 2014, at 11:04 AM, Cantor, Scott <cantor.2 at> wrote:

> On 5/8/14, 10:16 AM, "Michael R. Gettes" <gettes at> wrote:
>> as a couple of folks have askedŠ  here is the contract language we use.
>> When the company refuses to do InCommon we come up something custom but
>> along similar lines.  From my experience I have decided to NOT promote
>> SAML in contract and to specify shibboleth compatibility because I have
>> had too many cases of a vendor saying ³we do SAML² and then it becomes a
>> pissing contest on what means SAML so I decided to pursue the product
>> compatibility path and I have had much greater success with this path.
> Coincidentally, I was recently discussing internally whether to invest any
> cycles in updating the saml2int profile, which you probably recall was
> intended to help with that problem. It would be useful to me to know if
> people are using that for this kind of purpose. If not, it's not a good
> use of the project's time to bother with it.
> -- Scott
> --
> To unsubscribe from this list send an email to users-unsubscribe at

More information about the users mailing list