Multiple Name ID's in IdP 2.x for Google Apps

Tom Scavo trscavo at
Mon Aug 24 17:40:52 EDT 2015

On Mon, Aug 24, 2015 at 5:06 PM, Leung, Warren <wleung at> wrote:
> We planning on upgrading to IdP 3.x early next year!  However we are in
> the process of upgrading our 2.x instance and have a QA setup with the
> latest version with some other internal enchantments.

Can't tell if that's a Freudian Slip or tongue-in-cheek ;-)

> We are trying to
> connect our Google Apps test instance with our QA instance, but it seems
> like the IdP is releasing transientId (we release transientId for all)
> over principal.  Configurations are the same (except for entityID¹s and

I think you mean SingleSignOnService URLs, right?

Btw, you're making more work for yourself by deploying yet another
Shibboleth instance with a new entityID. See this wiki page for tips
how to migrate to Shib IdP V3:

The first rule of thumb is: Don't introduce a new entityID!

Hope this helps,


More information about the users mailing list