Page Comparison

Versions Compared

Old Version 46

changes.mady.by.user Scott Cantor

Saved on Jul 30, 2012

compared with

New Version Current

changes.mady.by.user Alex Stuart

Saved on Nov 02, 2016

Key

This line was added.
This line was removed.
Formatting was changed.

Comment: Add link to SSO wiki page

...

Configure SSO to an IdP or with a Discovery Service
- To use a specific IdP, change the entityID setting in the <SSO> element to match the value in that IdP's metadata.
- To use a discovery service, remove the entityID setting in the <SSO> element, and set the discoveryProtocol and discoveryURL settings appropriately.

...

<TrustEngine> (zero or more on 2.4+, else required for <ApplicationDefaults>, optional for <ApplicationOverride>)
- Controls how trust processing is performed to determine whether authentication of messages from identity providers succeeds or fails, including XML and simple signing, and SSL/TLS. In later versions, the default configuration used when none are specified is to chain the ExplicitKey and PKIX engines together.

<AttributeExtractor>(zero or more on 2.4+, else zero or one)
- Controls how SAML attributes are decoded and exposed to applications.

...