In NAM 3.2 I have NAM configured as a Service Provider, with the
attribute matching settings. I also have the Password fetch class
configured as a post-authentication method, however the Password Fetch
seems determined to perform a ldap lookup - even though the user has
already been identified in the attribute matching.

Since the user has already been identified with the DN, neither the CN
userlookup settings or specifying an attribute for the lookup works.
Any tips for NAM 3.2 to use for a federated user using a transient
identifier with the Password Fetch Class?


el_triad's Profile:
View this thread: