For our implementation they used an SP in the UK Federation. Straightforward, just needed to release the cn attribute in the assertion for their entityID from what I remember.
_____________________________________
James Todd | Data Centre & Operations Analyst
Edinburgh Napier University
Craiglockhart Campus
Edinburgh
EH14 1DJ
Tel: 0131 455 4313
Email: [log in to unmask]
-----Original Message-----
From: Discussion list for Shibboleth developments [mailto:[log in to unmask]] On Behalf Of Chris Reeves
Sent: 23 March 2016 11:12
To: [log in to unmask]
Subject: Re: Federating the Ex-Libris Alma service
On Wed 23 Mar 2016 at 10:54:18 +0000, Andy Swiffin (Staff) wrote:
>
> Our library are changing their library systems over to the "Alma
> Library Management System". This seems to be a hosted, "cloud",
> solution which they're going to use SAML authentication to against the IdP.
>
> Has anyone else had experience with this?
>
> I've just got sight of the "instructions" in:
> https://developers.exlibrisgroup.com/alma/integrations/user-management
> /authentication/saml and they seem to take the IdP metadata and slice
> it all into little bits and
> squirrel it away. All very messy when we come to update the certificate.
Hi Andy,
We use hosted ALMA with SAML auth. I wasn't involved in setting this up, but the configuration on the IdP side is trivial. They are not part of the UK Fed, which adds yet another third-party that needs to be updated should our metadata change, but unfortunately that's the case with most of the commercial
(non-library/non-research) integrations that we do these days.
If you have any specific questions then feel free to give me a shout.
Regards,
Chris
This message and its attachment(s) are intended for the addressee(s) only and should not be read, copied, disclosed, forwarded or relied upon by any person other than the intended addressee(s) without the permission of the sender. If you are not the intended addressee you must not take any action based on this message and its attachment(s) nor must you copy or show them to anyone. Please respond to the sender and ensure that this message and its attachment(s) are deleted.
It is your responsibility to ensure that this message and its attachment(s) are scanned for viruses or other defects. Edinburgh Napier University does not accept liability for any loss or damage which may result from this message or its attachment(s), or for errors or omissions arising after it was sent. Email is not a secure medium. Emails entering Edinburgh Napier University's system are subject to routine monitoring and filtering by Edinburgh Napier University.
Edinburgh Napier University is a registered Scottish charity. Registration number SC018373
|