Tenable.sc help
Darren Boss
darren.boss at computecanada.ca
Thu Jun 24 16:51:32 UTC 2021
We just got it to work using attribute oid instead of the friendly name.
On Thu, Jun 24, 2021 at 12:08 PM Cantor, Scott <cantor.2 at osu.edu> wrote:
>
> On 6/24/21, 10:48 AM, "users on behalf of Darren Boss" <users-bounces at shibboleth.net on behalf of darren.boss at computecanada.ca> wrote:
>
> > Has anyone done an integration with Tenable.sc?
>
> A while ago. It was a broken embedded version of SimpleSAML.php IIRC.
>
> > We have the Tenable SP in RP configuration with p:encryptAssertions="false" and
> > p:nameIDFormatPrecedence="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified".
>
> There is no reason to ever use that format, and this isn't one.
>
> > They make it sound like they can read the username from an attribute
> > but we have also found documentation that disputes that. This would be
> > the first SP I've had to configure an unspecified nameid for.
>
> It isn't.
>
> I don't have my settings to hand but if I spot anything unusual I'll reply.
>
> -- Scott
>
>
> --
> For Consortium Member technical support, see https://wiki.shibboleth.net/confluence/x/coFAAg
> To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
--
Darren Boss
Senior Programmer/Analyst
Programmeur-analyste principal
darren.boss at computecanada.ca
More information about the users
mailing list