November 13, 2019 at 8:21 pm #27095
Is it applicable to configure OpenAM service provider to support both SAML2 Transient federation and persistent federation at the same time from different IDP and how can we configure this?
(Note: now we did not store user identity in SP)
Also is it applicable to map different SAML Assertion Attribute in SAML response Coming from different IDP to the same attribute in OpenAM service provider if we implemented both SAML2 Transient federation and persistent.
if IDP1 send the userEmail as “UserEmail”
and IDP2 send useremail as “email”
how we can map this in our service provider.November 13, 2019 at 8:21 pm #27096November 13, 2019 at 8:26 pm #27098Scott HegerParticipant
I would recommend creating two different Hosted SP entities and pair each with their specific IDP in their own circle of trust. This way you can define how each pair interacts with each other and clearly identify how to handle the responses from each IDP.November 13, 2019 at 8:53 pm #27100
it is not applicable to register the same URL (Server) as a two different service Provider
@shegergmail-comNovember 13, 2019 at 11:46 pm #27102Scott HegerParticipant
Yes you can.November 14, 2019 at 10:36 am #27103November 18, 2019 at 7:40 pm #27139
You must be logged in to reply to this topic.