Shibboleth Choosing Authentication Mechanism Based on SP

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

Shibboleth Choosing Authentication Mechanism Based on SP

avinash92c
I am Using Shibboleth as IDP
1)
For starters, how do i configure IDP to pick an authentication mechanism based on sp
like
SP1- Database Authentication
SP2- External Authentication
SP3- LDAP Authentication
-------------------------------------------------------------------------------------------
2)
Ultimately,
I Want to Setup Multiple External/Internal Authentication Endpoints at the same IDP instance
eg., LDAP, DATABASE,FILE.

And Depending on a parameter passed to shibboleth IDP from SP, it should be able to resolve to a authentication endpoint and forward the user to that authentication endpoint.

eg., There are three Authentication Endpoints configured at shibboleth

LDAP - ABC

external authentication site - ABD

Lets say when sp is making a call to shibboleth along with ABC as parameter,shibboleth should use LDAP to authenticate the user.

Like i want to configure separate user groups to have different authentication sources using the same shibboleth instance.

And depending on a parameter from the SP, Shibboleth should pick the relevant authentication method and use that to authenticate the user.

Not Sure if this is possible.