Shibboleth SP, Azure AD IDP - no metadata found.
Dan MacMillan
danm at emerald-associates.com
Wed Jul 4 18:16:35 EDT 2018
Thanks. I don't know how I would install these though. As I understand it, this is optional? Validation helps me from shooting myself in the foot but it won't prevent the system from working -- assuming I myself make sure it is valid, correct?
Dan MacMillan | Integration Specialist
Emerald Associates Inc.
Tel: 403.686.7100 ext. 8930
-----Original Message-----
From: users [mailto:users-bounces at shibboleth.net] On Behalf Of Peter Schober
Sent: Friday, June 29, 2018 09:49
To: users at shibboleth.net
Subject: Re: Shibboleth SP, Azure AD IDP - no metadata found.
* Cantor, Scott <cantor.2 at osu.edu> [2018-06-29 17:41]:
> On 6/28/18, 6:34 PM, "users on behalf of Dan MacMillan" <users-bounces at shibboleth.net on behalf of danm at emerald-associates.com> wrote:
>
> > Setting the validate attribute on the MetaDataProvider element to false resolved my issue.
>
> That's because Microsoft defined their use of SAML metadata in ways
> that rely on any consumer having a schema for their extensions on
> hand, which the SP obviously does not.
For the OP: I don't have an example handy for what's inside their
md:RoleDescriptor but I think the UKf schema collection should have a
copy: https://github.com/ukf/ukf-meta/tree/master/mdx/schema
-peter
--
For Consortium Member technical support, see https://wiki.shibboleth.net/confluence/x/coFAAg
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
More information about the users
mailing list