Prerequisites
You have followed the instruction of "Install installed Shibboleth Service Provider (SP) 3.x on Windows and IIS" and configured the site it with Cornell IDP.
Configuration
Weill Medical has its own Identity Provider with entityID "https://login.weill.cornell.edu/idp".
...
To avoid name space collision, define REMOTE_USER to use the value of eduPersonPrincipalName
Code Block <ApplicationDefaults entityID="xxxx" REMOTE_USER="eduPersonPrincipalName" ..>
Registration
Weill Medical IDP require SP's metadata registered with InCommon. If you haven't submitted Shibboleth integration request form yet, just mention your site also need to authenticate with Weill Medical IDP in the form. You also need to provide following information as they are required by InCommon:
- Technical Contact Email, Administrative contact email
- SP Display Name
- SP Logo HTTPS URL, Logo width(pixels), Logo width(pixels) - if you don't have your own, we'll use Cornell Logo
- SP Privacy Statement URL - if you don't have your own, we'll use https://www.dfa.cornell.edu/policy/policies/access-information-technology-data-and-monitoring-network-transmissions
...