Shibboleth Service Provider 3 - How to configure the SHIB SP3 to accept only encrypted SAML Assertion?
KVi at absolute.com
Fri Dec 24 08:13:43 UTC 2021
We're using the Shibboleth Service Provider 3 in our product, and I have requirement that "How to configure the SHIB SP3 to accept only encrypted SAML Assertion?
I've tried updating some attributes of <ApplicationDefaults<https://shibboleth.atlassian.net/wiki/spaces/SP3/pages/2063695997/ApplicationDefaults>> likes: encryption, encryptionAlg , requireAuthenticatedEncryption, requireSignedAssertions, configuring SecurityPolicyProvider<https://shibboleth.atlassian.net/wiki/spaces/SP3/pages/2065334523/SecurityPolicyProvider> but still could not resolve the issue.
Could you please help to give me if the SHIB SP3 has any option to accept only encrypted SAML Assertion? Reject un-encrypted SAML Assertion?
Thank you so much,
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the users