From d2f320f086279418e7a471bbfc7e44f3f2338509 Mon Sep 17 00:00:00 2001 From: Paul Scott Date: Fri, 10 Mar 2017 12:41:00 +0100 Subject: Resolves SWAMIDOPS-8511 --- .../login.temp1235.hhs.se-adfs-services-trust.xml | 722 +++++++++++++++++++++ swamid-testing-idp-1.0.mxml | 1 + 2 files changed, 723 insertions(+) create mode 100644 swamid-2.0/login.temp1235.hhs.se-adfs-services-trust.xml diff --git a/swamid-2.0/login.temp1235.hhs.se-adfs-services-trust.xml b/swamid-2.0/login.temp1235.hhs.se-adfs-services-trust.xml new file mode 100644 index 00000000..05f7c094 --- /dev/null +++ b/swamid-2.0/login.temp1235.hhs.se-adfs-services-trust.xml @@ -0,0 +1,722 @@ + + + + + + + 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 + + + + + + E-Mail Address + The e-mail address of the user + + + Given Name + The given name of the user + + + Name + The unique name of the user + + + UPN + The user principal name (UPN) of the user + + + Common Name + The common name of the user + + + AD FS 1.x E-Mail Address + The e-mail address of the user when interoperating with AD FS 1.1 or AD FS 1.0 + + + Group + A group that the user is a member of + + + AD FS 1.x UPN + The UPN of the user when interoperating with AD FS 1.1 or AD FS 1.0 + + + Role + A role that the user has + + + Surname + The surname of the user + + + PPID + The private identifier of the user + + + Name ID + The SAML name identifier of the user + + + Authentication time stamp + Used to display the time and date that the user was authenticated + + + Authentication method + The method used to authenticate the user + + + Deny only group SID + The deny-only group SID of the user + + + Deny only primary SID + The deny-only primary SID of the user + + + Deny only primary group SID + The deny-only primary group SID of the user + + + Group SID + The group SID of the user + + + Primary group SID + The primary group SID of the user + + + Primary SID + The primary SID of the user + + + Windows account name + The domain account name of the user in the form of domain\user + + + Is Registered User + User is registered to use this device + + + Device Identifier + Identifier of the device + + + Device Registration Identifier + Identifier for Device Registration + + + Device Registration DisplayName + Display name of Device Registration + + + Device OS type + OS type of the device + + + Device OS Version + OS version of the device + + + Is Managed Device + Device is managed by a management service + + + Forwarded Client IP + IP address of the user + + + Client Application + Type of the Client Application + + + Client User Agent + Device type the client is using to access the application + + + Client IP + IP address of the client + + + Endpoint Path + Absolute Endpoint path which can be used to determine active versus passive clients + + + Proxy + DNS name of the federation server proxy that passed the request + + + Application Identifier + Identifier for the Relying Party + + + Application policies + Application policies of the certificate + + + Authority Key Identifier + The Authority Key Identifier extension of the certificate that signed an issued certificate + + + Basic Constraint + One of the basic constraints of the certificate + + + Enhanced Key Usage + Describes one of the enhanced key usages of the certificate + + + Issuer + The name of the certificate authority that issued the X.509 certificate + + + Issuer Name + The distinguished name of the certificate issuer + + + Key Usage + One of the key usages of the certificate + + + Not After + Date in local time after which a certificate is no longer valid + + + Not Before + The date in local time on which a certificate becomes valid + + + Certificate Policies + The policies under which the certificate has been issued + + + Public Key + Public Key of the certificate + + + Certificate Raw Data + The raw data of the certificate + + + Subject Alternative Name + One of the alternative names of the certificate + + + Serial Number + The serial number of a certificate + + + Signature Algorithm + The algorithm used to create the signature of a certificate + + + Subject + The subject from the certificate + + + Subject Key Identifier + Describes the subject key identifier of the certificate + + + Subject Name + The subject distinguished name from a certificate + + + V2 Template Name + The name of the version 2 certificate template used when issuing or renewing a certificate. The extension is Microsoft specific. + + + V1 Template Name + The name of the version 1 certificate template used when issuing or renewing a certificate. The extension is Microsoft specific. + + + Thumbprint + Thumbprint of the certificate + + + X.509 Version + The X.509 format version of a certificate + + + Inside Corporate Network + Used to indicate if a request originated inside corporate network + + + Password Expiration Time + Used to display the time when the password expires + + + Password Expiration Days + Used to display the number of days to password expiry + + + Update Password URL + Used to display the web address of update password service + + + Authentication Methods References + Used to indicate all authentication methods used to authenticate the user + + + Client Request ID + Identifier for a user session + + + First Name + + + Last Name + + + + +
https://login.temp1235.hhs.se/adfs/services/trust/2005/issuedtokenmixedasymmetricbasic256
+ + +
https://login.temp1235.hhs.se/adfs/services/trust/2005/issuedtokenmixedsymmetricbasic256
+ + +
https://login.temp1235.hhs.se/adfs/services/trust/13/issuedtokenmixedasymmetricbasic256
+ + +
https://login.temp1235.hhs.se/adfs/services/trust/13/issuedtokenmixedsymmetricbasic256
+ + +
https://login.temp1235.hhs.se/adfs/ls/
+ + +
http://login.temp1235.hhs.se/adfs/services/trust
+ + + + +
https://login.temp1235.hhs.se/adfs/services/trust/2005/issuedtokenmixedasymmetricbasic256
+ + + + +
https://login.temp1235.hhs.se/adfs/ls/
+ + + + + + + + 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 + + + + + + + + + + E-Mail Address + The e-mail address of the user + + + Given Name + The given name of the user + + + Name + The unique name of the user + + + UPN + The user principal name (UPN) of the user + + + Common Name + The common name of the user + + + AD FS 1.x E-Mail Address + The e-mail address of the user when interoperating with AD FS 1.1 or AD FS 1.0 + + + Group + A group that the user is a member of + + + AD FS 1.x UPN + The UPN of the user when interoperating with AD FS 1.1 or AD FS 1.0 + + + Role + A role that the user has + + + Surname + The surname of the user + + + PPID + The private identifier of the user + + + Name ID + The SAML name identifier of the user + + + Authentication time stamp + Used to display the time and date that the user was authenticated + + + Authentication method + The method used to authenticate the user + + + Deny only group SID + The deny-only group SID of the user + + + Deny only primary SID + The deny-only primary SID of the user + + + Deny only primary group SID + The deny-only primary group SID of the user + + + Group SID + The group SID of the user + + + Primary group SID + The primary group SID of the user + + + Primary SID + The primary SID of the user + + + Windows account name + The domain account name of the user in the form of domain\user + + + Is Registered User + User is registered to use this device + + + Device Identifier + Identifier of the device + + + Device Registration Identifier + Identifier for Device Registration + + + Device Registration DisplayName + Display name of Device Registration + + + Device OS type + OS type of the device + + + Device OS Version + OS version of the device + + + Is Managed Device + Device is managed by a management service + + + Forwarded Client IP + IP address of the user + + + Client Application + Type of the Client Application + + + Client User Agent + Device type the client is using to access the application + + + Client IP + IP address of the client + + + Endpoint Path + Absolute Endpoint path which can be used to determine active versus passive clients + + + Proxy + DNS name of the federation server proxy that passed the request + + + Application Identifier + Identifier for the Relying Party + + + Application policies + Application policies of the certificate + + + Authority Key Identifier + The Authority Key Identifier extension of the certificate that signed an issued certificate + + + Basic Constraint + One of the basic constraints of the certificate + + + Enhanced Key Usage + Describes one of the enhanced key usages of the certificate + + + Issuer + The name of the certificate authority that issued the X.509 certificate + + + Issuer Name + The distinguished name of the certificate issuer + + + Key Usage + One of the key usages of the certificate + + + Not After + Date in local time after which a certificate is no longer valid + + + Not Before + The date in local time on which a certificate becomes valid + + + Certificate Policies + The policies under which the certificate has been issued + + + Public Key + Public Key of the certificate + + + Certificate Raw Data + The raw data of the certificate + + + Subject Alternative Name + One of the alternative names of the certificate + + + Serial Number + The serial number of a certificate + + + Signature Algorithm + The algorithm used to create the signature of a certificate + + + Subject + The subject from the certificate + + + Subject Key Identifier + Describes the subject key identifier of the certificate + + + Subject Name + The subject distinguished name from a certificate + + + V2 Template Name + The name of the version 2 certificate template used when issuing or renewing a certificate. The extension is Microsoft specific. + + + V1 Template Name + The name of the version 1 certificate template used when issuing or renewing a certificate. The extension is Microsoft specific. + + + Thumbprint + Thumbprint of the certificate + + + X.509 Version + The X.509 format version of a certificate + + + Inside Corporate Network + Used to indicate if a request originated inside corporate network + + + Password Expiration Time + Used to display the time when the password expires + + + Password Expiration Days + Used to display the number of days to password expiry + + + Update Password URL + Used to display the web address of update password service + + + Authentication Methods References + Used to indicate all authentication methods used to authenticate the user + + + Client Request ID + Identifier for a user session + + + Dummy value + + + First Name + + + Last Name + + + + +
https://login.temp1235.hhs.se/adfs/services/trust/2005/certificatemixed
+ + + + +
https://login.temp1235.hhs.se/adfs/services/trust/mex
+ + + + + + + + +
https://login.temp1235.hhs.se/adfs/ls/
+ + + + + + + + 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 + + + + + + + MIIC5jCCAc6gAwIBAgIQFLE+JRWbr6dO/DnzzRd18jANBgkqhkiG9w0BAQsFADAvMS0wKwYDVQQDEyRBREZTIFNpZ25pbmcgLSBsb2dpbi50ZW1wMTIzNS5oaHMuc2UwHhcNMTcwMTIxMjA1MzE4WhcNMTgwMTIxMjA1MzE4WjAvMS0wKwYDVQQDEyRBREZTIFNpZ25pbmcgLSBsb2dpbi50ZW1wMTIzNS5oaHMuc2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb2zXOedFExa2buAnsMwWosysFcvUISb+hTP7Y7cDfLYLC4HYgeaVl+f0utv9EAKooMKbCOOoqypXfZvR4thEj4nASEd9l1SrK7bfTK21w7bpsgPW1YyLYyMeSWREIm2eB+vD19o8K0zF0bJ68ZjtQp/ZeuCB+UAOmwlcRv36tc4ky/MOgAudjG2nozN2Qol4/bjSpxy9X8Vk2AGLeEusv7U2kFnVUUO8LFSJrSukys7+KRrTJa+NoXQa9EXq1y9yPitLYiIfDu8OV0rJuNkidLkhVRluYlp8wsL5xtAPYMABkUCjejYW7OrGfejYTRSgzwRdUrDW2/003XR8eRvMDAgMBAAEwDQYJKoZIhvcNAQELBQADggEBAHnffSwWY95Eu+s8rq4Paazq0tfXYVxkqfRcFFEOeI1Gyq7OGe2YSRTw8dW6/2wsQOZrbLsgRoLhn04B1+gt2wpP29JsKJwVjeKCEtXEqEIm6gmetPCW27pbkLMTUeMYan6jkI9jww7zR8nrwtulBlmzrAcivcNTDiSTq/W+3ec8wg2KPoY0ie5bk3XI5dhrYFzzb6XzVamGvUKYYx6DqOIP/nsTZy21y+4mOoo8bS0snippT2rUlbrFwn8fneuHv7NzEvp0bOSd78ke+hnEQDd44R9XhBU5RT5zvB24Tv6+dUXoSJN6TbauPgtUtGdEV/euSkTlkJoU1Ejbh5qupWY= + + + + + + urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress + urn:oasis:names:tc:SAML:2.0:nameid-format:persistent + urn:oasis:names:tc:SAML:2.0:nameid-format:transient + + + + + + + + + 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 + + + + + + + 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 + + + + + + + urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress + urn:oasis:names:tc:SAML:2.0:nameid-format:persistent + urn:oasis:names:tc:SAML:2.0:nameid-format:transient + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + Handelshögskolan i Stockholm + Handelshögskolan i Stockholm + https://www.hhs.se/ + + + IT + Support + itsupport@hhs.se + +46 8 7369400 + + diff --git a/swamid-testing-idp-1.0.mxml b/swamid-testing-idp-1.0.mxml index 21630182..76dbcd39 100644 --- a/swamid-testing-idp-1.0.mxml +++ b/swamid-testing-idp-1.0.mxml @@ -55,4 +55,5 @@ + -- cgit v1.2.3