NameID - aacli and SAML tracer differ

Donald Lohr lohrda at
Fri Oct 7 14:05:29 UTC 2022

In the first SAML POST element caught by the SAML tracer to my IdP, 
while setting on my IdP login page, I found the following:

     <samlp:NameIDPolicy xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"

Am I understanding you correctly that this is coming from the vendor 
side of the conversation and not from mine?


On 10/7/22 9:54 AM, Cantor, Scott wrote:
> CAUTION: This email originated from outside of JMU. Do not click links or open attachments unless you recognize the sender and know the content is safe.
> ________________________________
>>     Is there any where I can see in shib logs, SAML tracer this NameIDPolicy
>> forcing they are doing?
> Yes, both will allow it to be seen.
> -- Scott

D o n a l d   L o h r
I n f o r m a t i o n   S y s t e m s
J a m e s   M a d i s o n   U n i v e r s i t y
5 4 0 . 5 6 8 . 3 7 3 0
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the users mailing list