Page tree

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Panel

A Moonshot Identity Provider can release information about the user that is being authenticated through the use of SAML embedded in the RADIUS traffic. This page lists the options available to an Identity Provider administrator to achieve this.

Using an existing SAML Identity Provider

  • Here you will find instructions on what to do if your organisation already has a SAML Identity provider and wishes to re-use that to issue SAML assertions.
Tip

Currently, option 1 is the preferred option as it presents the most flexible and capable solution. Option 2 lacks flexibility, and Option 3 has undesirable implications for managing attribute release.

Option 1 - Using SAML components co-located on the RADIUS server

  • This page includes instructions on how to configure software to issue SAML on the same server as the RADIUS server.

Option 2 Hard-coded in the RADIUS Server

  • Here is information on another option for handling SAML assertions (for use with very simple deployments or for testing purposes only).

Option 3 - Using an existing SAML Identity Provider

  • Here you will find instructions on what to do if your organisation already has a SAML Identity provider and wishes to re-use that to issue SAML assertions.