SAML2 based configuration with NETIQ Access Managers do not provide ability to add policy based authorizations. If users are using SP initiated SSO, we need the ability to write specific policies to authenticate, authorize user prior to generating SAML and sending user to Service Provider. This is possible with reverse proxy based application but not SAML2 based application with NAM.
by: arun p. | over a year ago | Other
Comments
I think that SAML\WS-Federation authrozation policies is a very good idea.