We support SAML 2.0 for SSO but can also support Oauth and can set up any of our websites to handle your learners. The user data is stored on our servers in Ireland and Frankfurt (disaster recovery).
Example metadata Information for SSO
- Sp and Idp Initiated SAML 2.0
- EntityID: arn:aws:cognito-idp:eu-west-1:938413640052:userpool/eu-west-1_[To be shared with you]
- Name ID Format: urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified
- Assertion Consumer Service(ACS) URL: https://auth-example.ihrdc.com/saml2/idpresponse
- Single Logout Service URL (SLO): https://auth-example.ihrdc.com/saml2/logout
- Target Sp URL: https://ipims.com
- Auth Request Signed: No
- SAML Assertion Signed: No
- SAML Response Signed: No
- Binding Type: POST
- SAML Attributes Consumed: email, givenname, familyname
Sample SAML Metadata
<?xml version="1.0"?>
<!-- Sp and Idp Initiated
Auth Request Signed: Yes
SAML Assertion Signed: No
SAML Response Signed: No
Target URL test.ipims.com -->
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"
validUntil="2020-7-23T15:44:00Z"
cacheDuration="PT604800S"
entityID="arn:aws:cognito-idp:eu-west-1:[TBD]:userpool/eu-west-1_[TBD]">
<md:SPSSODescriptor AuthnRequestsSigned="false" WantAssertionsSigned="false" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
Location="https://auth-[TBD].com/logout" />
<md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</md:NameIDFormat>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
Location="https://auth-[TBD].ihrdc.com/saml2/idpresponse"
index="1" />
</md:SPSSODescriptor>
<md:Organization>
<md:OrganizationName xml:lang="en-US">International Human Resource Development Corp</md:OrganizationName>
<md:OrganizationDisplayName xml:lang="en-US">IHRDC</md:OrganizationDisplayName>
<md:OrganizationURL xml:lang="en-US">https://ihrdc.com</md:OrganizationURL>
</md:Organization>
<md:ContactPerson contactType="technical">
<md:GivenName>Timothy Donohue</md:GivenName>
<md:EmailAddress>it@ihrdc.com</md:EmailAddress>
</md:ContactPerson>
<md:ContactPerson contactType="support">
<md:GivenName>LMS Support</md:GivenName>
<md:EmailAddress>support@ihrdc.com</md:EmailAddress>
</md:ContactPerson>
</md:EntityDescriptor>
Comments
0 comments
Article is closed for comments.