Recent experience with Power DMS integration?
Paul B. Henson
henson at cpp.edu
Wed Nov 14 19:23:15 EST 2018
On Tue, Nov 13, 2018 at 08:44:23PM +0000, Nate Klingenstein wrote:
> I assume they're looking for your SingleSignOnService endpoint. Your
> guess on binding is as good as mine; they mention POST, but I assume
> they mean that for the ACS URL, and would guess redirect.
Ah. God forbid they consume (or provide) actual SAML metadata 8-/.
> The WS-Fed documentation indicates they'll be looking at the NameID
> and matching it against some extrinsically provisioned username, so
> I'd wager they're doing the same with SAML. I'd guess they're not
> checking the format.
Bleh. Thanks for the pointer. I tried to talk my Windows colleague into
just using ADFS (auth for which is delegated to our idp), but he didn't
want to :(.
> So, yes, the documentation is... lacking. Unless they're responsive
> and supportive, I would start bombarding them with varied assertions
> and see what happens.
Heh, if the vendor won't/can't explain how their implementation works
this is going on my "super low priority" pile unless somebody high
enough gets antsy about it ;).
--
Paul B. Henson | (909) 979-6361 | http://www.cpp.edu/~henson/
Operating Systems and Network Analyst | henson at cpp.edu
California State Polytechnic University | Pomona CA 91768
More information about the users
mailing list