From 3e221501bba46a2afb39dbd6e4bbb34943c431b7 Mon Sep 17 00:00:00 2001 From: Paul Scott Date: Fri, 8 Sep 2017 09:39:26 +0200 Subject: Resolves SWAMIDOPS-191 --- swamid-2.0/adfs.tad.hv.se-adfs-services-trust.xml | 709 ++++++++++++++++++++++ 1 file changed, 709 insertions(+) create mode 100644 swamid-2.0/adfs.tad.hv.se-adfs-services-trust.xml (limited to 'swamid-2.0') diff --git a/swamid-2.0/adfs.tad.hv.se-adfs-services-trust.xml b/swamid-2.0/adfs.tad.hv.se-adfs-services-trust.xml new file mode 100644 index 00000000..fbe8d40b --- /dev/null +++ b/swamid-2.0/adfs.tad.hv.se-adfs-services-trust.xml @@ -0,0 +1,709 @@ + + + + + + + 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 + + + + + + E-Mail Address + The e-mail address of the user + + + Given Name + The given name of the user + + + Name + The unique name of the user + + + UPN + The user principal name (UPN) of the user + + + Common Name + The common name of the user + + + AD FS 1.x E-Mail Address + The e-mail address of the user when interoperating with AD FS 1.1 or AD FS 1.0 + + + Group + A group that the user is a member of + + + AD FS 1.x UPN + The UPN of the user when interoperating with AD FS 1.1 or AD FS 1.0 + + + Role + A role that the user has + + + Surname + The surname of the user + + + PPID + The private identifier of the user + + + Name ID + The SAML name identifier of the user + + + Authentication time stamp + Used to display the time and date that the user was authenticated + + + Authentication method + The method used to authenticate the user + + + Deny only group SID + The deny-only group SID of the user + + + Deny only primary SID + The deny-only primary SID of the user + + + Deny only primary group SID + The deny-only primary group SID of the user + + + Group SID + The group SID of the user + + + Primary group SID + The primary group SID of the user + + + Primary SID + The primary SID of the user + + + Windows account name + The domain account name of the user in the form of domain\user + + + Is Registered User + User is registered to use this device + + + Device Identifier + Identifier of the device + + + Device Registration Identifier + Identifier for Device Registration + + + Device Registration DisplayName + Display name of Device Registration + + + Device OS type + OS type of the device + + + Device OS Version + OS version of the device + + + Is Managed Device + Device is managed by a management service + + + Forwarded Client IP + IP address of the user + + + Client Application + Type of the Client Application + + + Client User Agent + Device type the client is using to access the application + + + Client IP + IP address of the client + + + Endpoint Path + Absolute Endpoint path which can be used to determine active versus passive clients + + + Proxy + DNS name of the federation server proxy that passed the request + + + Application Identifier + Identifier for the Relying Party + + + Application policies + Application policies of the certificate + + + Authority Key Identifier + The Authority Key Identifier extension of the certificate that signed an issued certificate + + + Basic Constraint + One of the basic constraints of the certificate + + + Enhanced Key Usage + Describes one of the enhanced key usages of the certificate + + + Issuer + The name of the certificate authority that issued the X.509 certificate + + + Issuer Name + The distinguished name of the certificate issuer + + + Key Usage + One of the key usages of the certificate + + + Not After + Date in local time after which a certificate is no longer valid + + + Not Before + The date in local time on which a certificate becomes valid + + + Certificate Policies + The policies under which the certificate has been issued + + + Public Key + Public Key of the certificate + + + Certificate Raw Data + The raw data of the certificate + + + Subject Alternative Name + One of the alternative names of the certificate + + + Serial Number + The serial number of a certificate + + + Signature Algorithm + The algorithm used to create the signature of a certificate + + + Subject + The subject from the certificate + + + Subject Key Identifier + Describes the subject key identifier of the certificate + + + Subject Name + The subject distinguished name from a certificate + + + V2 Template Name + The name of the version 2 certificate template used when issuing or renewing a certificate. The extension is Microsoft specific. + + + V1 Template Name + The name of the version 1 certificate template used when issuing or renewing a certificate. The extension is Microsoft specific. + + + Thumbprint + Thumbprint of the certificate + + + X.509 Version + The X.509 format version of a certificate + + + Inside Corporate Network + Used to indicate if a request originated inside corporate network + + + Password Expiration Time + Used to display the time when the password expires + + + Password Expiration Days + Used to display the number of days to password expiry + + + Update Password URL + Used to display the web address of update password service + + + Authentication Methods References + Used to indicate all authentication methods used to authenticate the user + + + Client Request ID + Identifier for a user session + + + Alternate Login ID + Alternate login ID of the user + + + + +
https://adfs.tad.hv.se/adfs/services/trust/2005/issuedtokenmixedasymmetricbasic256
+ + +
https://adfs.tad.hv.se/adfs/services/trust/2005/issuedtokenmixedsymmetricbasic256
+ + +
https://adfs.tad.hv.se/adfs/services/trust/13/issuedtokenmixedasymmetricbasic256
+ + +
https://adfs.tad.hv.se/adfs/services/trust/13/issuedtokenmixedsymmetricbasic256
+ + +
https://adfs.tad.hv.se/adfs/ls/
+ + +
http://adfs.tad.hv.se/adfs/services/trust
+ + + + +
https://adfs.tad.hv.se/adfs/services/trust/2005/issuedtokenmixedasymmetricbasic256
+ + + + +
https://adfs.tad.hv.se/adfs/ls/
+ + + + + + + + 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 + + + + + + + + + + E-Mail Address + The e-mail address of the user + + + Given Name + The given name of the user + + + Name + The unique name of the user + + + UPN + The user principal name (UPN) of the user + + + Common Name + The common name of the user + + + AD FS 1.x E-Mail Address + The e-mail address of the user when interoperating with AD FS 1.1 or AD FS 1.0 + + + Group + A group that the user is a member of + + + AD FS 1.x UPN + The UPN of the user when interoperating with AD FS 1.1 or AD FS 1.0 + + + Role + A role that the user has + + + Surname + The surname of the user + + + PPID + The private identifier of the user + + + Name ID + The SAML name identifier of the user + + + Authentication time stamp + Used to display the time and date that the user was authenticated + + + Authentication method + The method used to authenticate the user + + + Deny only group SID + The deny-only group SID of the user + + + Deny only primary SID + The deny-only primary SID of the user + + + Deny only primary group SID + The deny-only primary group SID of the user + + + Group SID + The group SID of the user + + + Primary group SID + The primary group SID of the user + + + Primary SID + The primary SID of the user + + + Windows account name + The domain account name of the user in the form of domain\user + + + Is Registered User + User is registered to use this device + + + Device Identifier + Identifier of the device + + + Device Registration Identifier + Identifier for Device Registration + + + Device Registration DisplayName + Display name of Device Registration + + + Device OS type + OS type of the device + + + Device OS Version + OS version of the device + + + Is Managed Device + Device is managed by a management service + + + Forwarded Client IP + IP address of the user + + + Client Application + Type of the Client Application + + + Client User Agent + Device type the client is using to access the application + + + Client IP + IP address of the client + + + Endpoint Path + Absolute Endpoint path which can be used to determine active versus passive clients + + + Proxy + DNS name of the federation server proxy that passed the request + + + Application Identifier + Identifier for the Relying Party + + + Application policies + Application policies of the certificate + + + Authority Key Identifier + The Authority Key Identifier extension of the certificate that signed an issued certificate + + + Basic Constraint + One of the basic constraints of the certificate + + + Enhanced Key Usage + Describes one of the enhanced key usages of the certificate + + + Issuer + The name of the certificate authority that issued the X.509 certificate + + + Issuer Name + The distinguished name of the certificate issuer + + + Key Usage + One of the key usages of the certificate + + + Not After + Date in local time after which a certificate is no longer valid + + + Not Before + The date in local time on which a certificate becomes valid + + + Certificate Policies + The policies under which the certificate has been issued + + + Public Key + Public Key of the certificate + + + Certificate Raw Data + The raw data of the certificate + + + Subject Alternative Name + One of the alternative names of the certificate + + + Serial Number + The serial number of a certificate + + + Signature Algorithm + The algorithm used to create the signature of a certificate + + + Subject + The subject from the certificate + + + Subject Key Identifier + Describes the subject key identifier of the certificate + + + Subject Name + The subject distinguished name from a certificate + + + V2 Template Name + The name of the version 2 certificate template used when issuing or renewing a certificate. The extension is Microsoft specific. + + + V1 Template Name + The name of the version 1 certificate template used when issuing or renewing a certificate. The extension is Microsoft specific. + + + Thumbprint + Thumbprint of the certificate + + + X.509 Version + The X.509 format version of a certificate + + + Inside Corporate Network + Used to indicate if a request originated inside corporate network + + + Password Expiration Time + Used to display the time when the password expires + + + Password Expiration Days + Used to display the number of days to password expiry + + + Update Password URL + Used to display the web address of update password service + + + Authentication Methods References + Used to indicate all authentication methods used to authenticate the user + + + Client Request ID + Identifier for a user session + + + Alternate Login ID + Alternate login ID of the user + + + + +
https://adfs.tad.hv.se/adfs/services/trust/2005/certificatemixed
+ + + + +
https://adfs.tad.hv.se/adfs/services/trust/mex
+ + + + + + + + +
https://adfs.tad.hv.se/adfs/ls/
+ + + + + + + + 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 + + + + + + + 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 + + + + + + urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress + urn:oasis:names:tc:SAML:2.0:nameid-format:persistent + urn:oasis:names:tc:SAML:2.0:nameid-format:transient + + + + + + + contoso.com + + + + + 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 + + + + + + + MIIC2DCCAcCgAwIBAgIQdJ+qhazgjLJDd3jeh9VkpzANBgkqhkiG9w0BAQsFADAoMSYwJAYDVQQDEx1BREZTIFNpZ25pbmcgLSBhZGZzLnRhZC5odi5zZTAeFw0xNTEyMDIxMzQ5NDhaFw0yMDEyMDIxMzQ5NDhaMCgxJjAkBgNVBAMTHUFERlMgU2lnbmluZyAtIGFkZnMudGFkLmh2LnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvR12vhcEsB93mg6pgwyQxGhZqpS8aEcCzOQwXOApH28y6RlT0qE/mowxX0fOpdBYblbxOurih4vtwx1NTe5CrXsUrpzkHP/hsOAmMGrpC0N5ybOEUegJ/Hk6wTmt7wA7nSfcsMvTUsXQZvKA+xFhCA7AjSMpF8Vv7BeU2O1IZDELU4U7P5iBls1YuMsgdFJ2Eu5LHILhfGaqSi9xkL7loYYwH3iU8MZ52CbOJLEl9uG99E3njSPq3CJ4tWZj1OkBLYf3gBBgvW3tOyYrAJWq5d1LyAh05+PNQQAKTPKHaaV9iAtUgys6M1v5XCUi1rv0nCBwl0iNQuFIiXsegaG4UQIDAQABMA0GCSqGSIb3DQEBCwUAA4IBAQBratRK3aI/quHmQ5fEMOaySihHaQId/26Jq4RQH0yOOhzjsQ9DSGCwwYZOefgi5G7SzQw1m6PJ7WecqT9gRPPT+IPt+KO+dnWQUNgedOZzM5Z0HXSdIUX0h5pxxTbHqExqkj9CZzKHFbiQvZBld7VcJsZW9PB7bM8lg+NAeoGBNdJACx33M59jVa+vPd2pVT5STufgIHkLkDGCqedBEQMFmyAhidVHlJO2cgieqmTjCDiO38ZYdXbwarsYrs6uxmdqUMdRwT4IVkpgyqyeQh/tN+w3QolWu4PX1s76GSYLUKasyK6YZXZDBGlFZDbb0padi0Vasmmg+VvMhuKmRtIP + + + + + + urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress + urn:oasis:names:tc:SAML:2.0:nameid-format:persistent + urn:oasis:names:tc:SAML:2.0:nameid-format:transient + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + Pär + Lauridsen + mailto:par.lauridsen@hv.se + + -- cgit v1.2.3