Multiple Name ID's in IdP 2.x for Google Apps
trscavo at gmail.com
Mon Aug 24 17:40:52 EDT 2015
On Mon, Aug 24, 2015 at 5:06 PM, Leung, Warren <wleung at it.ucla.edu> wrote:
> We planning on upgrading to IdP 3.x early next year! However we are in
> the process of upgrading our 2.x instance and have a QA setup with the
> latest version with some other internal enchantments.
Can't tell if that's a Freudian Slip or tongue-in-cheek ;-)
> We are trying to
> connect our Google Apps test instance with our QA instance, but it seems
> like the IdP is releasing transientId (we release transientId for all)
> over principal. Configurations are the same (except for entityID¹s and
> ACS URLS).
I think you mean SingleSignOnService URLs, right?
Btw, you're making more work for yourself by deploying yet another
Shibboleth instance with a new entityID. See this wiki page for tips
how to migrate to Shib IdP V3: https://spaces.internet2.edu/x/GYtHBQ
The first rule of thumb is: Don't introduce a new entityID!
Hope this helps,
More information about the users