Skip to main content

Implementation

Details about the implementation of Cirrus at Texas A&M University are documented here.

Authentication Payload

Cirrus returns a standard XML SAML response.

tip

You can test what authenticating to the Cirrus Proxy looks like by using their demonstration service provider.

Onboarding New Applications

New service providers are added via compiled metadata that's published online for Cirrus to read from. Identity Security runs this metadata service and can add and update entries on your behalf.

Federation Details

Identity Security has an internal Texas A&M System multilateral federation used to power the available IdPs in the Cirrus Proxy environment.

Current Members

Common Attributes

Friendly NameURNRequiredDerived
displayNameurn:oid:2.16.840.1.113730.3.1.241YesYes, from given/surname
givenNameurn:oid:2.5.4.42YesNo
snurn:oid:2.5.4.4YesNo
mailurn:oid:0.9.2342.19200300.100.1.3YesNo
eduPersonPrincipalNameurn:oid:1.3.6.1.4.1.5923.1.1.1.6YesNo
eduPersonUniqueIdurn:oid:1.3.6.1.4.1.5923.1.1.1.13YesYes, from tamuEduPersonUIN
tamuEduPersonUINurn:oid:1.3.6.1.4.1.4391.0.12YesYes, by split from eduPersonUniqueId
eduPersonScopedAffiliationurn:oid:1.3.6.1.4.1.5923.1.1.1.9NoNo
eduPersonAffiliationurn:oid:1.3.6.1.4.1.5923.1.1.1.1NoNo