send Subject in SAML login flow

Ignacio Amoeiro Bosch ignacio.amoeiro at extern.ibsalut.es
Fri Jan 14 11:03:56 UTC 2022


Hello All,

We want to configure MFA with Shibboleth. As a first login flow we will use the authn/Password, and for the 2FA we want to use a third party SAML IDP that will do the 2FA (SMS, application token, etc).

For this we want to use the SAML login flow, but we want to know if posible to add in the AuthRequest  the already authenticated subject in the authn/Password Flow. So they don't need to ask again for the UserID. Is this achievable?

Thanks






More information about the users mailing list