Reply To: Shibboleth Authentication and autodiscovery

Home Page Forums Network Management RADIUS 802.1x and Captive Portal Shibboleth Authentication and autodiscovery Reply To: Shibboleth Authentication and autodiscovery

#51998

imported_fulvio
Participant

Hi,
do not worry, Zeroshell couldn’t act as man in the middle in the communication between the client and the IdP if the user correctly verifies that the certificate of the IdP it’s trusted. The authentication is end-to-end tunneled on TLS so Zeroshell is not able to decrypt it. Instead it just calls a script before redirecting to the IdP/WAYF. Here is the patch for shibboleth-sp:

http://www.zeroshell.net/listing/shibboleth-2.4.3-zeroshell-IdP-autoDiscovery.patch

Regards
Fulvio