Re: [security-services] Groups - sstc-saml-x509-authn-attrib-profile-draft-10-diff.pdf uploaded

["Tom Scavo" <trscavo@gmail.com>]

On 8/22/06, Ari Kermaier <ari.kermaier@oracle.com> wrote:
>
> Actually, I have personal experience of a SAML 2.0 IdP implementation that is able to conform to the CD of this profile without significant modifications needed. It's really turned out to be just a matter of having configuration options that cover the signature/encryption requirements for enhanced mode -- the rest is pretty much plain vanilla attribute responder functionality. (The SP side is a little more complicated, but I've found that it's again mostly a configuration issue, not a protocol/profile implementation issue.)

We have a more-or-less complete SAML V1.1 implementation of this
profile.  Once we've ported to SAML V2.0, perhaps we can construct an
interop testbed?

Tom Scavo
NCSA/University of Illinois