Question re: skipEndpointValidationWhenSigned
Jeffrey Williams
jfwillia at uncg.edu
Tue May 26 15:05:13 UTC 2020
>
>
>
>
> Either the metadata is registered via a federation, in which case you
> order them to fix it, or the metadata isn't trustable in which case you
> should maintain it locally and just edit it as required.
>
Apologies. The metadata is a local copy provided by the vendor. Their SP
is sending our users ACS's that belong to other customers' of the vendor.
Am I correct in thinking that if I adjust the local metadata to other
customers' ACS's, our users would get authn into a non-UNCG instance with
nowhere to go?
--
Jeffrey Williams
Identity Engineer
Identity & Access Services
https://its.uncg.edu
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20200526/2139ddcc/attachment.htm>
More information about the users
mailing list