IdP 2.4 and Okta/Adobe.com SSO
Kathy E. Wright
kathyewright at gmail.com
Sat Aug 29 15:58:40 EDT 2015
Tom,
Yes. We can release a SAML2 Transient NameID, or a SAML2
Persistent NameID, and/or an eduPersonPrincipalName attribute.
On Aug 29, 2015 3:51 PM, "Tom Scavo" <trscavo at gmail.com> wrote:
> Hi Kathy,
>
> On Sat, Aug 29, 2015 at 3:03 PM, Kathy E. Wright <kewrig at clemson.edu>
> wrote:
> > I am trying to integrate our Shibboleth IdP 2.4 with Okta's SAML
> dashboard
> > for Adobe.com.
>
> For reference:
>
> integrating with Adobe software
> https://lists.incommon.org/sympa/arc/participants/2015-08/msg00009.html
>
> > We can release eppn to them as a NameID but only in transient
> > or persistent format.
>
> You're going to have to clarify what you mean by that. I assume
> something like: We can release a SAML2 Transient NameID, or a SAML2
> Persistent NameID, and/or an eduPersonPrincipalName attribute.
>
> > Adobe says the NameID needs to be "unspecified"
>
> Well, they shouldn't be requiring that, but there you have it.
>
> (I'll bring this up the next time I meet with them but I can't promise
> anything.)
>
> > I haven't been able to get that working. Does anyone have a solution?
>
> I'm sure you can do it but I'll let someone else answer this question.
>
> Tom
> --
> To unsubscribe from this list send an email to
> users-unsubscribe at shibboleth.net
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20150829/ffe33c62/attachment.html>
More information about the users
mailing list