Hi Takashi, Thanks for the response. I think my question is abit more at a higher level. I understand how to generate certs and include this to be used on signing my SAML token before it is sent to Google.
My question is given that Google App hasa signed SAML token from my company, how does Google trust the SAML token? Is there a list of registered CAs that Google will trust certificates from as I dont believe Google will trust my self-signed cert. Kind Regards, Yassin. On 8/20/08, Takashi Matsuo <[EMAIL PROTECTED]> wrote: > > > Hi Yassin, > > You are right. You need to register a certificate(or just a public > key) to use Google's SSO service. > > For more information, please see: > http://www.google.com/support/a/bin/answer.py?answer=60224&hl=en > > Regards, > > -- Takashi Matsuo > > On Wed, Aug 20, 2008 at 5:01 AM, [EMAIL PROTECTED] > <[EMAIL PROTECTED]> wrote: > > > > Hi, Im new to this topic so please bear with me. > > > > I have a domain that supports federation and follows SAML2.0 > > specification. I have a web portal that my users access and get > > authenticated. My portal has hooks to the fedration layer to > > transform an authenticated user id to a SAML token. I want my users > > to access their google apps through my portal where I want to pass the > > identity of the authenticated users in SAML form to google (service > > provider). As such, the SAML token generated needs to be signed and > > trusted by Google. > > > > Is there a registration process I need to go through to register my > > domain as Identity Provider for my users? > > > > - Yassin > > > > > > > > > > > > > --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Google Apps APIs" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/google-apps-apis?hl=en -~----------~----~----~----~------~----~------~--~---
