Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-2238

Support extensibility of auth context classes as described in the SAMLv2 spec

    Details

    • Type: Improvement
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 9.5.5, 10.0.0, 11.0.0, 12.0.0
    • Fix Version/s: 11.0.3, 12.0.1, 13.0.0
    • Component/s: SAML
    • Labels:
    • Support Ticket IDs:

      Description

      Authentication Context for the OASIS
      Security Assertion Markup Language
      SAML) V2.0

      Section 3.3 explains the extension mechanism

      currently the console only shows the auth context classes described in this document.

      MS ADFS can uses 'urn:federation:authentication:windows' (see http://msdn.microsoft.com/en-us/library/hh599318.aspx).

      As this auth context class can not be configured in OpenAM through the console SP-initiated auth does not trigger integrated Windows Auth on the IdP (ADFS) side.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                markdr Mark de Reeper
                Reporter:
                bthalmayr Bernhard Thalmayr
              • Votes:
                1 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: