technical-discuss - [InC-Technical] RE: AWS and InCommon
Subject: InCommon Technical Discussions
List archive
- From: "Cantor, Scott" <>
- To: "Basney, Jim" <>
- Cc: "" <>
- Subject: [InC-Technical] RE: AWS and InCommon
- Date: Sun, 2 Apr 2017 17:20:39 +0000
- Accept-language: en-US
- Authentication-results: spf=pass (sender IP is 164.107.81.214) smtp.mailfrom=osu.edu; illinois.edu; dkim=none (message not signed) header.d=none;illinois.edu; dmarc=pass action=none header.from=osu.edu;
- Ironport-phdr: 9a23:YG1YEhB1B27ufStynA6dUyQJP3N1i/DPJgcQr6AfoPdwSP37p8mwAkXT6L1XgUPTWs2DsrQf2reQ4v2rADVYqb+681k6OKRWUBEEjchE1ycBO+WiTXPBEfjxciYhF95DXlI2t1uyMExSBdqsLwaK+i764jEdAAjwOhRoLerpBIHSk9631+ev8JHPfglEnjSwbLdyIRmsqQjctsYajZZ/Jqot1xDEvmZGd+NKyG1yOFmdhQz85sC+/J5i9yRfpfcs/NNeXKv5Yqo1U6VWACwpPG4p6sLrswLDTRaU6XsHTmoWiBtIDBPb4xz8Q5z8rzH1tut52CmdIM32UbU5Uims4qt3VBPljjoMOiUn+2/LlMN/kKNboAqgpxNhxY7UfJqVP+d6cq/EYN8WWXZNUsNXWiNGDI2xYYUCAukYMepEoYT2ul8CoB+iCQWpAu7k1z1GiWLs3aAi0+ovDxzI3BAuEdwNvnTbrtT1O7sdX++616TI0S7MYvdK1Tvh9ITFcBYsquyMU7JqdsrRzFEiGw3bg1qKr4zlIzSV1v4Vv2OG8uRvSeWvi3I7qw1/vzOiwdsjhZPPhoIJzVDE7z91zJguKN2/U057fMSoH4VNuCGHLoZ7RN4pTW9vuCY/0LIGuJi7cTAQx5Qi3RHeavuHc46S7h3/U+aRJDF1j29mdrKnnxu+7FSsx+LmWsS70ltGtCRIn9fWunwQyhDe6NCLR/l980u7xDqC1APe5vtaLU06m6fXMYMtz7EumpYLv0TMACz7lFnzgaKTeEgp/uml5/jib7r7u5CRNI55hwTlPas0hMCyBP43PRUQU2Wa/+m3yaft8lfjQLpQi/07iqnZv47eJcQcvqO3GxNY3IE/5xqiFjurzcwWkHceIFJCYx2IkZLlO1bTIPDkFvi/hEmskDF2yPzcJr3hGJLNLmTdn7j9YbZ96klcyAwpwdBY+pJUFrUBIPX0Wk/yrtDXEhg5Mwmsz+bmDtVyyJ8eVHqSDqOFP67eq1CF6+A1L+SCaoIZoivxJ+Un6vL2iH82g14dfa2n3ZsNb3C4G+xrLFmDbnrqntcBFn0KshAgQOHxj12CSiNTa2ysUK0h+zE3EJimApvbRoCxnLyB2z+2HpxQZm9aDVCMFHLod4KCW/sWbyKSOMBhniUYVbe/V4Ah1ReutA7mxLV9KurY4zAXtZP41Ndp+u3Tjgoy+CdwD8ScyGGNU3p0kn0SSz832qB/vVJyyk2F0admn/xUC8Zf6O1UXQcnZtbgyLkwIdnpXA/QOp+rSVPsCoGkCzgqSN8g694KZ0d7HNS5yB3Pwnz5LaUSkunBL5Uy7qXGmzDKLMFh1zyOgKIoiUUhWI0VHWq9m+hy+xWFVN2BqFmQi6v/LfdU5yXK7mrWiDPWsQ==
- Spamdiagnosticmetadata: NSPM
- Spamdiagnosticoutput: 1:99
> I have to separately download metadata to the NCSA IdP from
> https://signin.aws.amazon.com/static/saml-metadata.xml? Is Internet2
> working with AWS to get their metadata into InCommon?
The entityID isn't valid, so that would seem to be one dealbreaker. I can't
imagine Amazon deferring any changes in order to propagate them via metadata
either, which would defeat the purpose. The worst case would be having the
metadata entered but not used properly. Manually loading it is a clear signal
that any changes will have to be manually accomodated, which is likely to be
the case.
(OSU is federating with them also, so I did go through the process.)
Incidentally, does anybody have an ECP-based wrapper around their proprietary
use of SAML in the CLI at this point? I've told our folks that it seems like
we'd have to support that in order to bother federating the console.
The Shibboleth Project would I think be willing to assist in or take over
support of such a wrapper, and if not, I'd certainly contribute.
-- Scott
- [InC-Technical] AWS and InCommon, Basney, Jim, 04/01/2017
- [InC-Technical] RE: AWS and InCommon, Cantor, Scott, 04/02/2017
- Re: [InC-Technical] RE: AWS and InCommon, Nick Roy, 04/03/2017
- RE: [InC-Technical] RE: AWS and InCommon, Cantor, Scott, 04/03/2017
- Re: [InC-Technical] RE: AWS and InCommon, Nick Roy, 04/03/2017
- Re: [InC-Technical] RE: AWS and InCommon, Jokl, James A. (Jim) (jaj), 04/05/2017
- RE: [InC-Technical] RE: AWS and InCommon, Cantor, Scott, 04/03/2017
- Re: [InC-Technical] RE: AWS and InCommon, Nick Roy, 04/03/2017
- [InC-Technical] RE: AWS and InCommon, Cantor, Scott, 04/02/2017
Archive powered by MHonArc 2.6.19.