Release NotesFederation Security Services Release NotesDefects Fixed in the Policy Server 6.0 SP5 Option PackFixes for Policy Server 6.0 SP5 Option Pack › Persistent Identifier for IdP-initiated SSO Not Being Generated (69108)

Previous Topic: Unattended Upgrade of the Policy Server Option Pack on Windows 2003 Causes a System Reboot (55548)

Next Topic: Unnecessary smdspropc.cpp Error in Policy Server Logs (78618)
Persistent Identifier for IdP-initiated SSO Not Being Generated (69108)

Symptom:

The Identity Provider does not dynamically create an opaque persistent identifier for IdP-initiated single sign-on requests even if the Service Provider sends an AuthnRequest with the Allow Creation of a New User Identifier flag set.

Solution:

FSS now correctly generates an opaque persistent identifier for IdP-initiated single sign-on requests if the Allow IDP to Create New User Identifier checkbox in the SSO tab of the SAML 2.0 Auth Scheme Properties dialog is set.