OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

samldemotech message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: RSA SAML Interop

Hi Adam,
I forwarded the information I had to Rich Salz of DataPower today for
generating the certs.  I hope he can have them in time for the dry run.
I will be providing addresses for the machines, but as far as a DNS
server, we agreed we would use an etc/hosts file on each machine.
Regards,
Bob

-----Original Message-----
From: Adam Dong [mailto:adam.dong@Sun.COM] 
Sent: Wednesday, January 26, 2005 11:41 AM
To: Ciochon, Robert
Cc: Thomas Wisniewski; samldemotech
Subject: Re: RSA SAML Interop


Bob,

       Any news on certificate generation for both ssl server certs and
xml message
        signing certs.

        It would be nice to have them ahead of time so that we could set
things up
        before we go.

Thanks,
Adam

PS:  Besides netmask being 255.255.0.0 and gateway being 192.168.1.254,
       would you also give us the DNS server IP address and assign each
       participating SP/IDP machine an IP address.


Ciochon, Robert wrote:

> Hi Tom,
> I expected to nail down the additional information at the dry run when

> people would be more focused.  If people have this information ahead 
> of time and can share it, that's great, but I know other priorities 
> can take precedence when you're in the office.
> Regards,
> Bob
>
> ----------------------------------------------------------------------
> --
> *From:* Thomas Wisniewski [mailto:Thomas.Wisniewski@entrust.com]
> *Sent:* Wednesday, January 26, 2005 10:31 AM
> *To:* Ciochon, Robert
> *Cc:* samldemotech
> *Subject:* RE: RSA SAML Interop
>
> Bob, your request did not have all the necessary questions for the dry

> run. I would like to xchg this data by the end of this week, if 
> possible. For example, here is the full list of items (with the 
> exception of the signing cert required to verify saml message 
> signatures -- any status on that?).
>  
> We could xchg metadata for some of these items -- basically the 
> urn-based values (but they should be documented as well).
>  
> Here is an example:
>  
> GENERIC
> =======
> Domain: .entrust.com
> IDP Basic: yes
> SP Basic: yes
> IDP Advanced: yes
> SP Advanced: yes
> Sample X509SubjectName Name ID: uid=alice,dc=entrust,dc=com Sample 
> Persistent Name ID: entrustuser1
>  
> IDP SPECIFIC
> ==========
> IDP Display Name (i.e., IDP Issuer): Entrust IDP Entity ID: 
> https://idp.entrust.com IDP SSO Service:
> https://idp.entrust.com/GetAccess/Saml/SSO/RedirectRequest
> IDP SLO Service: 
> https://idp.entrust.com/GetAccess/Saml/SLO/RedirectRequest
> IDP SLO Service: 
> https://idp.entrust.com/GetAccess/Saml/SLO/RedirectResponse
> IDP MNI Service: 
> https://idp.entrust.com/GetAccess/Saml/MNI/RedirectRequest
> IDP MNI Service: 
> https://idp.entrust.com/GetAccess/Saml/MNI/RedirectResponse
>  
>  
> SP SPECIFIC
> ==========
> SP Display Name (i.e., SP Issuer): Entrust SP Entity ID: 
> https://sp.entrust.com SP Resource URL: 
> https://sp.entrust.com/GetAccess/ResourceList
> // you had a separate url for SP Resoruce and eAuth SP Resource 
> (though we agreed this is the same)?
> SP Resource Display Name: Entrust Service Provider SP Assertion 
> Consumer Service:
> https://sp.entrust.com/GetAccess/Saml/SSO/PostResponse
> // assume the saml index for the above is 0 (implied) SP SLO Service: 
> https://sp.entrust.com/GetAccess/Saml/SLO/RedirectRequest
> SP SLO Service: 
> https://sp.entrust.com/GetAccess/Saml/SLO/RedirectResponse
> SP MNI Service: 
> https://sp.entrust.com/GetAccess/Saml/MNI/RedirectRequest
> SP MNI Service: 
> https://sp.entrust.com/GetAccess/Saml/MNI/RedirectResponse
>  
>  
>  
> Tom.
>  
>
>     -----Original Message-----
>     *From:* Ciochon, Robert [mailto:Robert.Ciochon@ca.com]
>     *Sent:* Tuesday, January 25, 2005 12:46 PM
>     *To:* samldemoprimary
>     *Subject:* RSA SAML Interop
>
>     To those of you who already responded to the request for
>     information for the SAML Interop configurations, thank you for
>     your prompt replies.  I am still waiting for replies from
>     DataPower, OpenNetwork, RSA and Symlabs.  I have attached the
>     original email and request a reply by the end of this week so we
>     can prepare for the dry run next Wednesday in Washington DC.
>
>     Regards,
>     Bob
>
>     <<RSA SAML Interop 2005 - request for info>>
>     *Robert Ciochon*
>     eTrust Development Manager
>     Computer Associates
>     San Diego, California
>     (858) 625-6866
>     robert.ciochon@ca.com
>

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]