Question re: skipEndpointValidationWhenSigned

Jeffrey Williams jfwillia at
Tue May 26 15:05:13 UTC 2020

> Either the metadata is registered via a federation, in which case you
> order them to fix it, or the metadata isn't trustable in which case you
> should maintain it locally and just edit it as required.
Apologies.  The metadata is a local copy provided by the vendor.  Their SP
is sending our users ACS's that belong to other customers' of the vendor.
Am I correct in thinking that if I adjust the local metadata to other
customers' ACS's, our users would get authn into a non-UNCG instance with
nowhere to go?

Jeffrey Williams
Identity Engineer
Identity & Access Services
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the users mailing list