Versions Compared

Old Version 70

changes.mady.by.user Kent Engström

Saved on

compared with

New Version 71

changes.mady.by.user Pål Axelsson

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • eduPersonPrincipalName (urn:oid:1.3.6.1.4.1.5923.1.1.1.6)
  • mail (urn:oid:0.9.2342.19200300.100.1.3)
  • displayName (urn:oid:2.16.840.1.113730.3.1.241)
  • givenName (urn:oid:2.5.4.42)
  • sn (urn:oid:2.5.4.4)
  • schacHomeOrganization (urn:oid:1.3.6.1.4.1.25178.1.2.9)

  • eduPersonEntitlement (urn:oid:1.3.6.1.4.1.5923.1.1.1.7) with the value urn:mace:terena.org:tcs:personal-user
    Please note that this entitlement value must only be released for those users that fulfils the requirements for requesting personal certificates, within Sweden the requirement is SWAMID Assurance Level 2 Profile (SWAMID AL2), or higher.

SWAMID has added the needed attribute release at the end of the current Shibboleth IdP best practice Example of a standard attribute filter for Shibboleth IdP v3.4.0 and above (not updated yet for personal certificates) and in Manual attribute releases with ADFS Toolkit. If your Identity Provider uses this example filter uncomment the release configuration for Sectigo SCM and the correct attributes will be releasedinstruction for both Shibboleth IdP and ADFS at the page Konfigur SAML-konfiguration Sunet TCS.

Test that your IdP is correctly configured

...