Recent experience with Power DMS integration?

Paul B. Henson henson at
Wed Nov 14 19:23:15 EST 2018

On Tue, Nov 13, 2018 at 08:44:23PM +0000, Nate Klingenstein wrote:

> I assume they're looking for your SingleSignOnService endpoint.  Your
> guess on binding is as good as mine; they mention POST, but I assume
> they mean that for the ACS URL, and would guess redirect.

Ah. God forbid they consume (or provide) actual SAML metadata 8-/.

> The WS-Fed documentation indicates they'll be looking at the NameID
> and matching it against some extrinsically provisioned username, so
> I'd wager they're doing the same with SAML.  I'd guess they're not
> checking the format.

Bleh. Thanks for the pointer. I tried to talk my Windows colleague into
just using ADFS (auth for which is delegated to our idp), but he didn't
want to :(.

> So, yes, the documentation is... lacking.  Unless they're responsive
> and supportive, I would start bombarding them with varied assertions
> and see what happens.

Heh, if the vendor won't/can't explain how their implementation works
this is going on my "super low priority" pile unless somebody high
enough gets antsy about it ;).

Paul B. Henson  |  (909) 979-6361  |
Operating Systems and Network Analyst  |  henson at
California State Polytechnic University  |  Pomona CA 91768

More information about the users mailing list