NameID - aacli and SAML tracer differ
Donald Lohr
lohrda at jmu.edu
Fri Oct 7 14:05:29 UTC 2022
In the first SAML POST element caught by the SAML tracer to my IdP,
while setting on my IdP login page, I found the following:
<samlp:NameIDPolicy xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient"
Am I understanding you correctly that this is coming from the vendor
side of the conversation and not from mine?
Thanks,
Don
On 10/7/22 9:54 AM, Cantor, Scott wrote:
> CAUTION: This email originated from outside of JMU. Do not click links or open attachments unless you recognize the sender and know the content is safe.
> ________________________________
>
>> Is there any where I can see in shib logs, SAML tracer this NameIDPolicy
>> forcing they are doing?
> Yes, both will allow it to be seen.
>
> -- Scott
>
>
--
D o n a l d L o h r
I n f o r m a t i o n S y s t e m s
J a m e s M a d i s o n U n i v e r s i t y
5 4 0 . 5 6 8 . 3 7 3 0
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20221007/d0dabd42/attachment.htm>
More information about the users
mailing list