Need help in shibboleth configuration

bhupendra.a.singh at bhupendra.a.singh at
Tue May 23 10:44:41 EDT 2017

Hi Scott,
I have done the changes as mentioned below but still not getting the REMOTE_USER value in response.


<ApplicationDefaults entityID="app-url/shibboleth"
                         REMOTE_USER="eppn persistent-id targeted-id">

SAML response:

<Attribute Name="https://federation-sts/schemas/claims/1/enterpriseid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"><AttributeValue>Enterprise ID </AttributeValue></Attribute>


<Attribute name="urn:oid:" id="enterprise_id">
        <AttributeDecoder xsi:type="ScopedAttributeDecoder"/>

Thanks & Regards,

-----Original Message-----
From: users [mailto:users-bounces at] On Behalf Of Cantor, Scott
Sent: Monday, May 22, 2017 7:18 PM
To: Shib Users <users at>
Subject: RE: Need help in shibboleth configuration

> Please find below the details. Please help, how can I get the
> remote_user values as enterprise id in my header response.

Add a mapping for the SAML attribute name you want to use and put the local id you give it in the rule into the REMOTE_USER setting in the SP config.

-- Scott

To unsubscribe from this list send an email to users-unsubscribe at


This message is for the designated recipient only and may contain privileged, proprietary, or otherwise confidential information. If you have received it in error, please notify the sender immediately and delete the original. Any other use of the e-mail by you is prohibited. Where allowed by local law, electronic communications with Accenture and its affiliates, including e-mail and instant messaging (including content), may be scanned by our systems for the purposes of information security and assessment of internal compliance with Accenture policy.

More information about the users mailing list