development icon indicating copy to clipboard operation
development copied to clipboard

Published 20 hours ago verified publisher icon servicecatalog

Logout malfunctioning after upgrading CTMG v16.1 or newer built with user ID of SAMAccountName and ADFS used as IDP

Open toshihiro-shiino opened this issue 7 years ago • 0 comments

In current CTMG, the NameIDFormat within Logout request is fixed and UPN as below: https://github.com/servicecatalog/development/blob/5550af14cff0afda7b86ce999930a24c4056c1aa/oscm-saml2-api/javasrc/org/oscm/saml2/api/LogoutRequestGenerator.java#L38

Due to the validation by ADFS to check if the value is truly UPN, Logout does not work when SAMAccountName is set as an alternative. We would like to request to enable the setting of NameIDFormat in configurationsetting.

toshihiro-shiino avatar Apr 03 '17 03:04 toshihiro-shiino