Help with NameID

Amit Dongaonkar amitd at
Fri Aug 7 00:35:34 UTC 2020

Hello users,
I am using Shibboleth IdP 3.4 and am trying to provide an assertion to AWS
They need the nameID as email , however they do not want the email
attribute coming in the assertion.
I tried different ways mentioned in the documentation but as soon as I
remove the mail attribute from the attribute-filter.xml I see the
invalidNameIDPolicy error.

Note that I am using a policy override for AWS SP.

Thanks and Regards,

*Amit Dongaonkar*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the users mailing list