shibboleth-dev - Re: IdP 2.0 - SP 1.3 attribute request fails - Problem (probably) found
Subject: Shibboleth Developers
List archive
- From: Lukas Haemmerle <>
- To:
- Subject: Re: IdP 2.0 - SP 1.3 attribute request fails - Problem (probably) found
- Date: Tue, 26 Feb 2008 17:54:16 +0100
- Organization: SWITCH - Serving Swiss Universities
Thanks to Chad's explanations we probably know the reason for this problem.
Apparently this request fails because the SP doesn't have certificates embedded in the metadata but only has the CN of the certificate subject included. Although the certificate was signed by one of the embedded root CA certificates, the request apparently fails because the current configuration expects the certificate to be embedded and cannot fall back to the validation using the certificate subject.
Lukas
--
SWITCH
Serving Swiss Universities
--------------------------
Lukas Haemmerle, Software Engineer, Security
Werdstrasse 2, P.O. Box, 8021 Zurich, Switzerland
phone +41 44 268 15 64, fax +41 44 268 15 68
,
http://www.switch.ch
- IdP 2.0 - SP 1.3 attribute request fails, Lukas Haemmerle, 02/26/2008
- Re: IdP 2.0 - SP 1.3 attribute request fails - Problem (probably) found, Lukas Haemmerle, 02/26/2008
- Re: IdP 2.0 - SP 1.3 attribute request fails - Problem (probably) found, Brent Putman, 02/26/2008
- Re: IdP 2.0 - SP 1.3 attribute request fails - Problem (probably) found, Chad La Joie, 02/26/2008
- Re: IdP 2.0 - SP 1.3 attribute request fails - Problem (probably) found, Brent Putman, 02/26/2008
- Re: IdP 2.0 - SP 1.3 attribute request fails - Problem (probably) found, Lukas Haemmerle, 02/26/2008
Archive powered by MHonArc 2.6.16.