Skip to Content.
Sympa Menu

mace-opensaml-users - Re: SAML for Provisioning

Subject: OpenSAML user discussion

List archive

Re: SAML for Provisioning


Chronological Thread 
  • From: Tom Scavo <>
  • To: Prasad <>
  • Cc:
  • Subject: Re: SAML for Provisioning
  • Date: Thu, 29 Sep 2005 17:17:08 -0400
  • Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=Nfp9iRy8qCxg5zW2XVMv5Wl0WCi4VHF3Gx2mhYhNzU+Ec92xFaQ0NgkV13CbrCwS0rDujT0YzVQ0lkWwtkazBmP0ZV0dGuOmVCbUNLISyaXL+9Dg6D7Yu4edriXal6QJ4p/dUGg70I5yy02sHnrzKQx/HrmVF7H+cpcehZSHyUM=
Prasad, can you explain a bit more what you mean by "user
provisioning"? Surely, a SAML service provider might create a user
account on the basis of a (strong) SAML assertion returned from a
(trusted) SAML identity provider, but that seems to defeat the purpose
of a SAML browser profile altogether.

Have you looked at persistent identifiers? Is this what you mean by
"user provisioning"?

Hope this helps,
Tom

On 9/29/05, Prasad
<>
wrote:
> Hi all,
>
> I came across several discussion where people believed that SAML can be
> used as a tool/protocol for User Provisioning. As far as my knowledge
> goes, and I am well familiar with SAML 1.X but less with SAML 2.0, I
> don't think User Provisioning is something that falls in SAMLs territory.
>
> Is my understanding correct or am I missing something ? Also, can
> anyone think of any use cases where SAML (1.1 and 2.0) or Liberty
> Alliance can be leveraged for doing User Provisioning ?
>
> Thanks.
> Prasad.
>

Archive powered by MHonArc 2.6.16.

Top of Page