idpmetadata.xml
<?xml version="1.0" encoding="UTF-8" standalone="yes" ?> <EntityDescriptor entityID="https://lsi.security.education.org.nz/opensso" xmlns="urn:oasis:names:tc:SAML:2.0:metadata"> <IDPSSODescriptor WantAuthnRequestsSigned="false" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> <KeyDescriptor use="signing"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate>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</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </KeyDescriptor> <ArtifactResolutionService index="0" isDefault="true" Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://lsi.security.education.org.nz:443/opensso/ArtifactResolver/metaAlias/idp" /> <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://lsi.security.education.org.nz:443/opensso/IDPSloRedirect/metaAlias/idp" ResponseLocation="https://lsi.security.education.org.nz:443/opensso/IDPSloRedirect/metaAlias/idp" /> <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://lsi.security.education.org.nz:443/opensso/IDPSloPOST/metaAlias/idp" ResponseLocation="https://lsi.security.education.org.nz:443/opensso/IDPSloPOST/metaAlias/idp" /> <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://lsi.security.education.org.nz:443/opensso/IDPSloSoap/metaAlias/idp" /> <ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://lsi.security.education.org.nz:443/opensso/IDPMniRedirect/metaAlias/idp" ResponseLocation="https://lsi.security.education.org.nz:443/opensso/IDPMniRedirect/metaAlias/idp" /> <ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://lsi.security.education.org.nz:443/opensso/IDPMniPOST/metaAlias/idp" ResponseLocation="https://lsi.security.education.org.nz:443/opensso/IDPMniPOST/metaAlias/idp" /> <ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://lsi.security.education.org.nz:443/opensso/IDPMniSoap/metaAlias/idp" /> <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</NameIDFormat> <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat> <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</NameIDFormat> <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</NameIDFormat> <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://lsi.security.education.org.nz:443/opensso/SSORedirect/metaAlias/idp" /> <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://lsi.security.education.org.nz:443/opensso/SSOPOST/metaAlias/idp" /> <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://lsi.security.education.org.nz:443/opensso/SSOSoap/metaAlias/idp" /> <NameIDMappingService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://lsi.security.education.org.nz:443/opensso/NIMSoap/metaAlias/idp" /> <AssertionIDRequestService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://lsi.security.education.org.nz:443/opensso/AIDReqSoap/IDPRole/metaAlias/idp" /> <AssertionIDRequestService Binding="urn:oasis:names:tc:SAML:2.0:bindings:URI" Location="https://lsi.security.education.org.nz:443/opensso/AIDReqUri/IDPRole/metaAlias/idp" /> </IDPSSODescriptor> </EntityDescriptor>
metadata.xml
<?xml version="1.0" encoding="utf-8"?>
<q1:EntityDescriptor entityID="https://STNSI01.MOEST.govt.nz/ESAA" validUntil="2012-11-09T02:04:48.9932999Z" ID="id6fde8956cfc846e98e0ce413ce316451" xmlns:q1="urn:oasis:names:tc:SAML:2.0:metadata"><Signature xmlns="http://www.w3.org/2000/09/xmldsig#"><SignedInfo><CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" /><SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" /><Reference URI="#id6fde8956cfc846e98e0ce413ce316451"><Transforms><Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" /><Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" /></Transforms><DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /><DigestValue>Bcbda2+s483JeSwgzmqj3mkWmio=</DigestValue></Reference></SignedInfo><SignatureValue>CFJBz9RvO9qt0IGyrySHgFdsFbOerx47VYJ2t7pOmC8hzJHEEUu2wJ9Q1CbxzBz6rYJJ/XC2MDCxGMI5LAxhmZM5G671uXejrzyIMVFeYUbAMGNXMMDuK5+KWdSBBWzdTu19/2tTpdY52l7sZR9Z++UbgaegoLUZfO1CeNeifVg=</SignatureValue><KeyInfo><X509Data><X509Certificate>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</X509Certificate><X509Certificate>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</X509Certificate><X509Certificate>MIIGMzCCBRugAwIBAgIQAuQc+2AIpahDlf0W+l+dTTANBgkqhkiG9w0BAQUFADCB/jELMAkGA1UEBhMCTloxKzApBgNVBAoTIk1pbmlzdHJ5IG9mIEVkdWNhdGlvbiwgTmV3IFplYWxhbmQxODA2BgNVBAsTL01vRSBJbnRlcm5hbCBUZXN0IEVudmlyb25tZW50IFBLSSBUcnVzdCBOZXR3b3JrMVYwVAYDVQQLE01NaW5pc3RyeSBvZiBFZHVjYXRpb24sIE5ldyBaZWFsYW5kIC0gRm9yIGF1dGhvcml6ZWQgdGVzdCBlbnZpcm9ubWVudCB1c2Ugb25seTEwMC4GA1UEAxMnTWluaXN0cnkgb2YgRWR1Y2F0aW9uIE5aIFRlc3QgUm9vdCBDQSAxMB4XDTEyMTAwMTA0MTMyMVoXDTMyMTAwMTA0MjMxM1owgf4xCzAJBgNVBAYTAk5aMSswKQYDVQQKEyJNaW5pc3RyeSBvZiBFZHVjYXRpb24sIE5ldyBaZWFsYW5kMTgwNgYDVQQLEy9Nb0UgSW50ZXJuYWwgVGVzdCBFbnZpcm9ubWVudCBQS0kgVHJ1c3QgTmV0d29yazFWMFQGA1UECxNNTWluaXN0cnkgb2YgRWR1Y2F0aW9uLCBOZXcgWmVhbGFuZCAtIEZvciBhdXRob3JpemVkIHRlc3QgZW52aXJvbm1lbnQgdXNlIG9ubHkxMDAuBgNVBAMTJ01pbmlzdHJ5IG9mIEVkdWNhdGlvbiBOWiBUZXN0IFJvb3QgQ0EgMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAI7RfFRVdnbzasUwCgESJMQ+fwjbJwqgAVxjmAE9lUEwP5YGGc7L7McWhHA7LFH4W23a+QTu4TbtEeuqjzQs3G5gW0+y5cWb5tixXB8VcHw6Hz+aY8yJgCaXw/yXUyL1Xbq77tSEQjnVvy9/MF5O+LhLzAkjRFl4kcwKXlV1Uttar7xHLUk8WqwP0GNU310AhxHjPn5ObIKfx8U5XWVioFudM0DvDxg7gCLgmv+Lg9VB8JcXSXhuD8y/V+tSgTfsiQ6874DsZ/c31772S8OKDNlaoJiCB2ctJj/bKeLznxxK1FHFJm2N7KYWtoNxmVlPX4cLEFKQMkfX2iM+dvhR9zkCAwEAAaOCAakwggGlMAsGA1UdDwQEAwIBhjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBQFBBcpWRxm5vF6HHQHMW4a1sMbOjAQBgkrBgEEAYI3FQEEAwIBADCCAVIGA1UdIASCAUkwggFFMFAGDCsGAQQBgpt+g30DAjBAMD4GCCsGAQUFBwIBFjJodHRwOi8vcGtpLm1pbmVkdS5nb3Z0Lm56L2Nwcy9yb290Y2ExX3Rlc3RfY3BzLmh0bTCB8AYEVR0gADCB5zCB5AYIKwYBBQUHAgIwgdcegdQATQBpAG4AaQBzAHQAcgB5ACAAbwBmACAARQBkAHUAYwBhAHQAaQBvAG4AIABOAFoAIABUAGUAcwB0ACAAUgBvAG8AdAAgAEMAQQAgADEAIAAtACAAVABoAGkAcwAgAFAASwBJACAAaQBzACAAaQBuAHQAZQBuAGQAZQBkACAAZgBvAHIAIAB0AGgAZQAgAGkAbgB0AGUAcgBuAGEAbAAgAHQAZQBzAHQAIABlAG4AdgBpAHIAbwBuAG0AZQBuAHQAIAB1AHMAZQAgAG8AbgBsAHkALjANBgkqhkiG9w0BAQUFAAOCAQEACI02t6VnoZFkegfue8kg3R267PnM9NpDmuABo+94waiWt4mzslEOLbrSnj6aleTAQ0vzXEJbrDTBqIDefZh9UkMMijd/GclIrpsoPt397v16P9m9gvlxCtW6q1zKwTSj0EROozfyqzCwA+WYIj0xg1/P3ZKHqd9JRvWOal8sZk8H8tZ5wWqvwPOVj980LLZ8Mh7VCzLqEbR13nWyKWZaLW5/06YDsSnVP1CN6j1MbYUZhen0uNzmUR7vrh6xDcsY8qd+5wcGQ28fXreRhE43rGTLLGjtFdGTYU7zPUFyUaR+PdXJsr2eQDBPAN2OmWII0qjIZunqg/NCUcVGqYpp4w==</X509Certificate></X509Data></KeyInfo></Signature>
<q1:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" AuthnRequestsSigned="true" WantAssertionsSigned="true">
<q1:KeyDescriptor use="signing">
<KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
<X509Data>
<X509Certificate>MIIHoTCCBomgAwIBAgIKEcsqQwAAAAAAPzANBgkqhkiG9w0BAQUFADCB8DELMAkGA1UEBhMCTloxKzApBgNVBAoTIk1pbmlzdHJ5IG9mIEVkdWNhdGlvbiwgTmV3IFplYWxhbmQxODA2BgNVBAsTL01vRSBJbnRlcm5hbCBUZXN0IEVudmlyb25tZW50IFBLSSBUcnVzdCBOZXR3b3JrMUUwQwYDVQQLEzxNaW5pc3RyeSBvZiBFZHVjYXRpb24sIE5ldyBaZWFsYW5kIC0gRm9yIGF1dGhvcml6ZWQgdXNlIG9ubHkxMzAxBgNVBAMTKk1pbmlzdHJ5IG9mIEVkdWNhdGlvbiBOWiBUZXN0IElzc3VpbmcgQ0EgMjAeFw0xMjEwMjQyMjI3NTNaFw0xNDEwMjQyMjI3NTNaMHMxCzAJBgNVBAYTAk5aMRMwEQYDVQQIEwpXZWxsaW5ndG9uMRMwEQYDVQQHEwpXZWxsaW5ndG9uMQwwCgYDVQQKEwNNT0UxDDAKBgNVBAsTA05TSTEeMBwGA1UEAxMVU1ROU0kwMS5NT0VTVC5nb3Z0Lm56MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCwGlu9yL4vKgreIVaur2pkYyBiD6W1VUXH55FceebyANEwH/kYmz898crYtAvQnnP57gYwDwxG0WH39ARxJKW/YpWjQ0KT23xQaRCm7BVJTnJYp93CLeBl0BIR1onzR01LybudwF1klrdmKMrp7J3e+wgM49lJNSXw2KfcirOP6QIDAQABo4IEOzCCBDcwCwYDVR0PBAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMHgGCSqGSIb3DQEJDwRrMGkwDgYIKoZIhvcNAwICAgCAMA4GCCqGSIb3DQMEAgIAgDALBglghkgBZQMEASowCwYJYIZIAWUDBAEtMAsGCWCGSAFlAwQBAjALBglghkgBZQMEAQUwBwYFKw4DAgcwCgYIKoZIhvcNAwcwHQYDVR0OBBYEFKwxd4tfkg2SQDcysd1xSTkCAU8LMB8GA1UdIwQYMBaAFITnIdXZVrWfEdeUhSxskzHrvePKMIIBZwYDVR0fBIIBXjCCAVowggFWoIIBUqCCAU6GX2h0dHA6Ly9wa2kubWluZWR1LmdvdnQubnovY2VydGRhdGEvTWluaXN0cnklMjBvZiUyMEVkdWNhdGlvbiUyME5aJTIwVGVzdCUyMElzc3VpbmclMjBDQSUyMDIuY3JshoHqbGRhcDovLy9DTj1NaW5pc3RyeSUyMG9mJTIwRWR1Y2F0aW9uJTIwTlolMjBUZXN0JTIwSXNzdWluZyUyMENBJTIwMixDTj1TVEVEVVBLSTAyLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWVkdWNhdGlvbixEQz1vcmcsREM9bno/Y2VydGlmaWNhdGVSZXZvY2F0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50MIIBkAYIKwYBBQUHAQEEggGCMIIBfjBrBggrBgEFBQcwAoZfaHR0cDovL3BraS5taW5lZHUuZ292dC5uei9jZXJ0ZGF0YS9NaW5pc3RyeSUyMG9mJTIwRWR1Y2F0aW9uJTIwTlolMjBUZXN0JTIwSXNzdWluZyUyMENBJTIwMi5jcnQwgd8GCCsGAQUFBzAChoHSbGRhcDovLy9DTj1NaW5pc3RyeSUyMG9mJTIwRWR1Y2F0aW9uJTIwTlolMjBUZXN0JTIwSXNzdWluZyUyMENBJTIwMixDTj1BSUEsQ049UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049Q29uZmlndXJhdGlvbixEQz1lZHVjYXRpb24sREM9b3JnLERDPW56P2NBQ2VydGlmaWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZpY2F0aW9uQXV0aG9yaXR5MC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5lZHVjYXRpb24ub3JnLm56L29jc3AwPQYJKwYBBAGCNxUHBDAwLgYmKwYBBAGCNxUIgYO7EvCxXYKtmx+Bzec7hPb6MYFuhuTbDoKu9HwCAWQCAQMwGwYJKwYBBAGCNxUKBA4wDDAKBggrBgEFBQcDATANBgkqhkiG9w0BAQUFAAOCAQEAYsJBg0uTjeAhiS9PwxASn2Z4Ug8lEay+/AKyYA0T+spmr2LWUb4NPrzRH61mc65+qRXpUF8ZuNAxdzb7jJH6jSMInmu5TpBTouKjTru9NbODTFI1pt+KPcQQsv4OPsm87iG2NloHYWcM4zxOWKbr1laNwJE758WFiWm/QjiPZHBLvqOpgIMcQcN4pa+YvHeGQkEIYFSqDYJb/Uz14a0yqcU1ZDwe7FC66446Pj2YFDrlGZI6mP9oQu9LkAP1SqyUKzZD21TzY7QKildcoGl/cfns6unRCgR2i/njQ5pgZgww1HXzYkGW3GqmWj4Tt6CB9pJESsnQG5zj+6qpo7P2oA==</X509Certificate>
</X509Data>
</KeyInfo>
</q1:KeyDescriptor>
<q1:KeyDescriptor use="encryption">
<KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
<X509Data>
<X509Certificate>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</X509Certificate>
</X509Data>
</KeyInfo>
</q1:KeyDescriptor>
<q1:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://stnsi01.moest.govt.nz/ESAA/logout.ashx" ResponseLocation="https://stnsi01.moest.govt.nz/ESAA/logout.ashx" />
<q1:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://stnsi01.moest.govt.nz/ESAA/logout.ashx" ResponseLocation="https://stnsi01.moest.govt.nz/ESAA/logout.ashx" />
<q1:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://stnsi01.moest.govt.nz/ESAA/login.ashx" index="0" isDefault="true" />
<q1:AttributeConsumingService index="0" isDefault="true">
<q1:ServiceName xml:lang="da">SP</q1:ServiceName>
<q1:RequestedAttribute Name="urn:FirstName" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" isRequired="true" />
<q1:RequestedAttribute Name="urn:LastName" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" isRequired="true" />
<q1:RequestedAttribute Name="urn:ESAA2_CONTACTEMAIL" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" />
</q1:AttributeConsumingService>
</q1:SPSSODescriptor>
<q1:ContactPerson contactType="administrative">
<q1:Company>Idaptive</q1:Company>
<q1:GivenName>Admin</q1:GivenName>
<q1:SurName>Administrator</q1:SurName>
<q1:EmailAddress>admin@localhost</q1:EmailAddress>
<q1:TelephoneNumber>777 8888</q1:TelephoneNumber>
</q1:ContactPerson>
</q1:EntityDescriptor>