Setting up IdP3 to release set of attributes only to CAS users

Martin, Brandon L martinb at
Thu Aug 13 12:49:39 EDT 2015


I recently setup CAS and Shibboleth together. I used as the remote user authentication gateway between CAS and Shibboleth. Unfortunately as Unicon pointed out to me, there is no way to exchange data between CAS and Shibboleth besides PrincipalName. To get the data I needed I query LDAP using the PrincipalName. Seems counter productive but it works for me.


Unicon/shib-cas-authn3 · GitHub
shib-cas-authn3 - Integrates an external CAS Server and Shibboleth IdPv3.
Read more...<>

Brandon Martin

martinb at

Peninsula School District

Data Integration Analyst

Ext: 3712

From: users <users-bounces at> on behalf of Jessica Coltrin <jcoltrin at>
Sent: Thursday, August 13, 2015 9:42 AM
To: users at
Subject: Setting up IdP3 to release set of attributes only to CAS users

We're setting up IdP3 and want to release a set of attributes to only users that login via CAS. Has anyone done this? What configuration did you use?


Jessica Coltrin
Manager, Identity and Access Management
Computing Infrastructure Services
Office of Information Technology
Portland State University
jcoltrin at<mailto:jcoltrin at><>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the users mailing list