Tenable.sc help

Cantor, Scott cantor.2 at osu.edu
Thu Jun 24 16:08:35 UTC 2021

On 6/24/21, 10:48 AM, "users on behalf of Darren Boss" <users-bounces at shibboleth.net on behalf of darren.boss at computecanada.ca> wrote:

>    Has anyone done an integration with Tenable.sc?

A while ago. It was a broken embedded version of SimpleSAML.php IIRC.

>    We have the Tenable SP in RP configuration with p:encryptAssertions="false" and
>    p:nameIDFormatPrecedence="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified".

There is no reason to ever use that format, and this isn't one.

>    They make it sound like they can read the username from an attribute
>    but we have also found documentation that disputes that. This would be
>    the first SP I've had to configure an unspecified nameid for.

It isn't.

I don't have my settings to hand but if I spot anything unusual I'll reply.

-- Scott

More information about the users mailing list