Page History
...
Note |
---|
Every eduID.at-registered IDP should be able to produce at least the following attributes: |
- Name attributes
- displayName (
urn:oid:2.16.840.1.113730.3.1.241
) - givenName (
urn:oid:2.5.4.42
) - sn/surname (
urn:oid:2.5.4.4
)
- displayName (
- Identifiers
- SAML Subject-ID (
urn:oasis:names:tc:SAML:attribute:subject-id
) - SAML Pairwise-ID (
urn:oasis:names:tc:SAML:attribute:pairwise-id
) - SAML2 persistent NameID (
urn:oasis:names:tc:SAML:2.0:nameid-format:persistent
) - eduPersonPrincipalName (
urn:oid:1.3.6.1.4.1.5923.1.1.1.6
) - mail (
urn:oid:0.9.2342.19200300.100.1.3
)
- SAML Subject-ID (
- Authorization / Org data
- eduPersonScopedAffiliation (
urn:oid:1.3.6.1.4.1.5923.1.1.1.9
) - eduPersonEntitlement (
urn:oid:1.3.6.1.4.1.5923.1.1.1.7
)
- schacHomeOrganization (
urn:oid:1.3.6.1.4.1.25178.1.2.9
)
- eduPersonScopedAffiliation (
...
Info |
---|
The use of the provided Service Categories to automate attribute release as much as possible is recommended for all eduID.at IDPs, especially those also participating in InterfederationeduGAIN. |
Test your attribute release rules with the eduGAIN Attribute Release Check!.
Notify ACOnet
To make your Identity Provider usable with services registered in other federations contact ACOnet in order for your entity to become visible to those interfederation services.
...
Overview
Content Tools
Tasks