Glad to see this use fo the Shibboleth ADFS Integration: An extension allowing a Shibboleth 1.3 IdP to integrate with Microsoft’s Active Directory Federation Service.
Shibboleth and ADFS Interoperability – this is now a reality!
Last week, the efforts of Microsoft, the JISC, London School of Economics, Neath Port Talbot and Oxford Computer Group delivered proof of the interoperability between Shibboleth and Microsoft’s ADFS. Of course, this has been theorietically possible for nearly a year now but it doesn’t seem that anyone has actually proved it. So, I’m really pleased to see that this breakthrough occurred through the collaboration of these different organisations in the UK to demonstrate the potential that ADFS can offer to those many customers in education wishing to have interoperability with Shibboleth.
During the Proof of Concept we were able to demonstrate the following:
- An ADFS FS-A talking to a Shibboleth SP
- A Shibboleth IdP talking to an ADFS FS-R
- The ability to send a “privacy-enhanced” UPN (firstname.lastname@example.org) into the TargetedID attribute.
- The ability to manipulate other attributes/claims as we need to – although we haven’t necessarily gone as far with this as we could
Cross Posted from Dan Fay’s Blog (http://blogs.msdn.com/dan_fay)