Sv: Sv: Shibboleth 4.2.x and ADFS/Azure
Mårtensson, Roger
Roger.Martensson at miun.se
Fri Oct 21 09:19:29 UTC 2022
> Ah, I see! Yes, that sounds "wrong" (not sure if invalid or just
"Wrong" may be the right word or maybe "they way Microsoft does it".
> unexpected)... is there a AuthnContextClassRef in the SAML response from
> ADFS at all?
Yes. I get one with the value "urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport". With Windows Authentication I get one ending with ":windows"
-----Ursprungligt meddelande-----
Från: users <users-bounces at shibboleth.net> För Matthew Slowe via users
Skickat: den 21 oktober 2022 11:15
Till: users at shibboleth.net
Kopia: Matthew Slowe <matthew.slowe at jisc.ac.uk>
Ämne: Re: Sv: Shibboleth 4.2.x and ADFS/Azure
On 21/10/2022 09:42, Mårtensson, Roger via users wrote:
> The end results is that our shibboleth returns NoAuthContext and I believe that it is because of the ADFS returning the right value in the wrong place.
Ah, I see! Yes, that sounds "wrong" (not sure if invalid or just
unexpected)... is there a AuthnContextClassRef in the SAML response from
ADFS at all?
--
Matthew Slowe [he/him] (GPG: 0x6BE0CF7D04600314)
Senior Technical Consultant and Support specialist, Jisc
Team: 01235 822185
Lumen House, Library Avenue, Harwell Oxford, Didcot, OX11 0SG
More information about the users
mailing list