Equifax SP and Shibboleth IDP
Peter Schober
peter.schober at univie.ac.at
Mon Nov 25 11:45:28 EST 2019
* Zico <mailzico at gmail.com> [2019-11-25 17:36]:
> My initial issue is: I don't see any attribute being released from IDP side
> OR it's inside `CipherData` snippet. Playing with "idp.encryption.optional
> == true" and relying party isn't helping much to decipher that CipherData
> snippet.
That's not how you'd find out what your own IDP sends. You'd use:
* aacli, to simulate what would be going out, and/or
* your own log files, tuned as needed, e.g. by setting
<logger name="PROTOCOL_MESSAGE" level="DEBUG" />
and reloading your logging config (or waiting 10 min for it to
become active).
-peter
More information about the users
mailing list