...
Parameter | Value | Note |
|---|---|---|
SAML version | SAML2 | |
Issuer | This is the entityID of the SURFconext EngineBlock IdP | |
Identity Provider Certificate | Download the certificate from https://enginemetadata.surfconext.nl/engine_prod.crt.surfconext.nl-20181213.pem and upload this file into this field | This is the signing certificate of the SURFconext EngineBlock IdP in X509 format |
SAML User ID Type | Assertion contains the Federation ID from the User object | SURFconext will provide the unique identifier for the user (in the format: urn:collab:person:[~urn:collab:person:surfnet.nl:niels:schachomeorg]:[~urn:collab:person:surfnet.nl:niels:uid], |
SAML User ID Location | User ID is in the NameIdentifier element of the Subject statement | Using the NameIdentifier is the preferred way of delivering the identifyer |
User Provisioning Enabled | True | It is preferred to enable autocreation of users |
...