...
| Info |
|---|
| In the follow up to a critical security advisory that Shibboleth Consortium released on Feb 27 2018, Identity Provider should begin to insist on the use of XML Encryption going forward. From now on, all the new service provider must provide a certificate for encryption in the metadata. |
...
Cornell IDP Info
Generally, vendors will have the following questions. You can send them a link to this page to get started.
...
Test IDP: https://shibidp-test.cit.cornell.edu/idp/shibboleth
What is the URL for Cornell
...
IDP metadata?
Cornell is the member of InCommon. Cornell's metadata is included in InCommon's metadata. Get Cornell's metadata from InCommon:
...
https://shibidp.cit.cornell.edu/idp/shibboleth
If you are integrating test instance of your application, please point it to Cornell IDP test instance. Test IDP's metadata can be accessed from https://shibidp-test.cit.cornell.edu/idp/shibboleth
IDP Certificate
https://confluence.cornell.edu/display/SHIBBOLETH/IDP+certificate
IDP Login URL
Prod IDP login URL(POST binding): https://shibidp.cit.cornell.edu/idp/profile/SAML2/POST/SSO
Prod IDP login URL(Redirect binding): https://shibidp.cit.cornell.edu/idp/profile/SAML2/Redirect/SSO
Test IDP login URL (POST binding): https://shibidp-test.cit.cornell.edu/idp/profile/SAML2/POST/SSO
Test IDP login URL(Redirect binding): https://shibidp-test.cit.cornell.edu/idp/profile/SAML2/Redirect/SSO
Does the Cornell Identity Provider provide a logout service?
...