Replying to own post:
Josh Howlett wrote:
> Hi Bob,
> RL 'Bob' Morgan wrote:
>>> It's possible that a convergence of 802.1X and Shibb could allow us
>>> to extract the best from both approaches.
>>
>>
>>
>> This is certainly true, if we can focus on what the real benefits are.
>
>
> How about a single network and application cross-domain AAA infrastructure?
Some food for thought: here's a proposal to encapsulate a SAML artifact
within an EAP (802.1X) network AAA transaction, that could be used
subsequently for other applications.
http://www.ietf.org/internet-drafts/draft-tschofenig-enroll-bootstrapping-saml-02.txt
josh.
|