...
Support along with the Onboarding Team Members have the access to login as any MRAO in the system. The process is only used to support a MRAO who has questions regarding SCM or Support/Validation Related issues. In the process any of Sectigo staff needing to login as a MRAO they will notify the MRAO who asked for support or if we deem something is wrong they may just login as prior to responding.
Q: How do I enable SAML?
You MUST be a member of eduGAIN to use SAML for the Sectigo Certificate Manager.
To enable SAML for admin access to SCM:
...
IdP must release the following information:
| displayName | urn:oid:2.16.840.1.113730.3.1.241 | Johnny Doe | USED for CN. See below |
| cn | urn:oid:2.5.4.3 | John Doe | fallback for CN. See below |
| sn | urn:oid:2.5.4.4 | Doe | fallback for CN. See below |
| givenName | urn:oid:2.5.4.42 | John | fallback for CN. See below |
urn:oid:0.9.2342.19200300.100.1.3 | johndoe@example.edu | yes | |
eduPersonPrincipalName | urn:oid:1.3.6.1.4.1.5923.1.1.1.6 | jd@example.edu | yes |
eduPersonEntitlement | urn:oid:1.3.6.1.4.1.5923.1.1.1.7 | urn:mace:terena.org:tcs:personal-user | yes (see authorization) |
schacHomeOrganization | urn:oid:1.3.6.1.4.1.25178.1.2.9 | example.edu | yes |
Q: What is needed to validate an organisation?
...