ISAM Federations – Using an Email address as the SAML Principal Name

Encountered a scenario last week, where I logged the user into ISAM using an AD Short name, but needed to use the email address as the SAML Principal name when logging into an external service (e.g. Pager Duty). The user's email address was populated as an attribute in Active Directory, and ISAM will automatically pull... Continue Reading →

February 15, 2016

Set an authentication level for an Authentication Service Mechanism

Have been trying to setup an authentication service Mechanism to return a specific Authentication level into WebSEAL, and initially had some trouble, here is what you need to do: The important part are these lines: if (policyID.equals("urn:ibm:security:authentication:asf:hotp")) { stsuuAttrs.setAttribute(new Attribute("AUTHENTICATION_LEVEL", null, "5")); } Where you specify the policyID, and nominate the appropriate Authentication Level.... Continue Reading →

February 11, 2016

Website Built with WordPress.com.

Up ↑

Month: February 2016

ISAM Federations – Using an Email address as the SAML Principal Name

Set an authentication level for an Authentication Service Mechanism

Follow Blog via Email

Follow me on Twitter

Tags

Top Posts & Pages

Recent Posts

By Request (Since May 2017)