Equifax SP and Shibboleth IDP

Peter Schober peter.schober at univie.ac.at
Mon Nov 25 11:45:28 EST 2019

* Zico <mailzico at gmail.com> [2019-11-25 17:36]:
> My initial issue is: I don't see any attribute being released from IDP side
> OR it's inside `CipherData` snippet. Playing with "idp.encryption.optional
> == true" and relying party isn't helping much to decipher that CipherData
> snippet.

That's not how you'd find out what your own IDP sends. You'd use:

* aacli, to simulate what would be going out, and/or

* your own log files, tuned as needed, e.g. by setting
  <logger name="PROTOCOL_MESSAGE" level="DEBUG" />
  and reloading your logging config (or waiting 10 min for it to
  become active).


More information about the users mailing list