...
- IdPs support the eduPersonPrincipalName and eduPersonTargetedID attributes.
- When SAML 2.0 is used, the "persistent" <NameID> format is used to represent the eduPersonTargetedID attribute.
- The release of eduPersonTargetedID is automated for most or all affiliates (save perhaps for students opting out under FERPA) to SPs that are not otherwise subject to user anonymity requirements, such as some library services.
| HTML Comment | ||
|---|---|---|
| ||
Parked Items
| ||
| Wiki Markup | ||
| {htmlcomment:hidden}
h2. Parked Items
* Keys of less than a certain age
** We should consider what, if any, age is actually "too old"
* Full saml2int conformance
* InCommon Implementation Profile conformance
** Could identify "exceptions to conformance" to highlight specific missing capabilities or could break profile into separate features in the matrix
* Identity attributes
** Regular (event-driven? nightly?) synchronization with systems of record
** Documentation of locally-defined attributes
* Reporting of statistics
* Education
** For end-users
*** Privacy
*** Appropriate use
*** Protection of secrets
{htmlcomment} |