Apparent inconsistencies in the Shibboleth wiki concerning persistent NameIDs for federating a Shibboleth IDP with Microsoft Azure

Cantor, Scott cantor.2 at
Tue Apr 5 15:13:17 EDT 2016

> Regarding your question, omitting the SHA1 security configuration override
> from the relying party override for Microsoft in relying-party.xml made no
> difference--I'm inclined to keep it however (thank you for this).

You certainly shouldn't use SHA1 unless you have to.

> If the opportunity to modify the wiki is available, I am willing to do this. The
> technical considerations are limited enough to be able to state clearly and
> concisely, without  unnecessary disclaimers.

Anybody can modify the wiki, if with no other account than a free one from one of the self-registration-capable IDPs.

-- Scott

More information about the users mailing list