Tenable.sc help

Darren Boss darren.boss at computecanada.ca
Thu Jun 24 16:51:32 UTC 2021

We just got it to work using attribute oid instead of the friendly name.

On Thu, Jun 24, 2021 at 12:08 PM Cantor, Scott <cantor.2 at osu.edu> wrote:
> On 6/24/21, 10:48 AM, "users on behalf of Darren Boss" <users-bounces at shibboleth.net on behalf of darren.boss at computecanada.ca> wrote:
> >    Has anyone done an integration with Tenable.sc?
> A while ago. It was a broken embedded version of SimpleSAML.php IIRC.
> >    We have the Tenable SP in RP configuration with p:encryptAssertions="false" and
> >    p:nameIDFormatPrecedence="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified".
> There is no reason to ever use that format, and this isn't one.
> >    They make it sound like they can read the username from an attribute
> >    but we have also found documentation that disputes that. This would be
> >    the first SP I've had to configure an unspecified nameid for.
> It isn't.
> I don't have my settings to hand but if I spot anything unusual I'll reply.
> -- Scott
> --
> For Consortium Member technical support, see https://wiki.shibboleth.net/confluence/x/coFAAg
> To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net

Darren Boss
Senior Programmer/Analyst
Programmeur-analyste principal
darren.boss at computecanada.ca

More information about the users mailing list