...
- Ensure that Service Providers list, in their metadata, those attributes that are required and optional for proper operation.
- Create an AFP covering those attributes. Each attribute would list a single
PermitValueRule
of typeAttributeInMetadata
. Note, this does not effect affect how thePolicyRequirementRule
is specified so this rule could be applied to a requester using the same logic as any other policy. So the rule could be applied to all SPs, only this those in a certain group, specific SPs, etc. - Install and configure the SWITCH ArpViewer. Strictly speaking, this is not required. However, taking the above steps without using the ArpViewer creates a situation that is extremely dangerous to the effective management of personal privacy.
...