Specify a default authentication context in Relying Party config
Michael A Grady
mgrady at unicon.net
Mon Nov 30 10:07:48 EST 2015
How can I set a particular default authentication context in relying-party.xml? I was trying to use the property p:defaultAuthenticationContexts, modeling after the examples for setting p:nameIDFormatPrecedence, but that raises an error, because I hadn't noticed at first that the defaultAuthenticationContexts list values need to be of type 'AuthnContextClassRefPrincipal', not simple string values. The goal is to set a default of a context like 'http://www.duosecurity.com/', requiring 2FA for that SP.
--
Michael A. Grady
IAM Architect, Unicon, Inc.
More information about the users
mailing list