Custom attributes to the IdP
Sowmya Vallabhajosyula
sowmya.v at zemosolabs.com
Wed May 4 09:48:45 EDT 2016
Peter,
Thanks for the quick reply. I just subscribed to the mail list - is there a
website link to see Douglas' answer or can you please forward it?
On Wed, May 4, 2016 at 7:05 PM, Peter Schober <peter.schober at univie.ac.at>
wrote:
> * Sowmya Vallabhajosyula <sowmya.v at zemosolabs.com> [2016-05-04 15:14]:
> > If I would like to send an extra custom attribute to IdP which I
> > would like to use as ou partition of ldap. How can I achieve this?
>
> You want to send some part of the LDAP object's DN as a SAML
> Attribute? See Douglas' answer from yesterday about the 'entryDN'
> operational attribute. If your LDAP DSA does not support that I think
> the LDAP middleware used in the Shibboleth IDP can produce something
> with the same value internally, check the documentation.
>
> Once you have that pulled into an IDP internal attribute you can
> create a Script type attribute defintion that parses out the value
> you're looking for.
> -peter
> --
> To unsubscribe from this list send an email to
> users-unsubscribe at shibboleth.net
>
--
Thanks and Regards,
Sowmya Vallabhajosyula
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20160504/ba6725f4/attachment.html>
More information about the users
mailing list