Apparent inconsistencies in the Shibboleth wiki concerning persistent NameIDs for federating a Shibboleth IDP with Microsoft Azure

Cantor, Scott cantor.2 at
Wed Apr 13 15:01:18 EDT 2016

On 4/13/16, 2:56 PM, "users on behalf of Carlos Milán Figueredo" <users-bounces at on behalf of cmilanf at> wrote:

>I can't be grateful enough with every person who contributed in this thread. Thanks to you I was able to get Shibboleth IdP 3.2 up and running against Azure Active Directory (Office 365). The wiki page was absolutely misleading. I'll be creating a new one with the correct procedure if you don't mind.

Given that I think the original was/is mostly accurate, I don't really think that's going to help much but confuse people more.

The problem here is that dumping a ton of XML into a page doesn't help but to propagate mistakes. What's needed in providing integration guides is to cover the *technical requirements of the service*. Since the vendors aren't capable of documenting their own services, that's really what people are doing here.

Basically, the instructions need to be "what", not "how". "How" is a matter for the existing IdP documentation to cover.

-- Scott


More information about the users mailing list