diff --git a/docs.oasis-open.org_security_saml_v2.0_saml-schema-metadata-2.0.xsd b/docs.oasis-open.org_security_saml_v2.0_saml-schema-metadata-2.0.xsd
new file mode 100644
index 0000000000000000000000000000000000000000..0d158c0ba436433ae829419503ec6366daf6d986
--- /dev/null
+++ b/docs.oasis-open.org_security_saml_v2.0_saml-schema-metadata-2.0.xsd
@@ -0,0 +1,337 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<schema
+ targetNamespace="urn:oasis:names:tc:SAML:2.0:metadata"
+ xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"
+ xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
+ xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
+ xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
+ xmlns="http://www.w3.org/2001/XMLSchema"
+ elementFormDefault="unqualified"
+ attributeFormDefault="unqualified"
+ blockDefault="substitution"
+ version="2.0">
+ <import namespace="http://www.w3.org/2000/09/xmldsig#"
+ schemaLocation="http://www.w3.org/TR/2002/REC-xmldsig-core-20020212/xmldsig-core-schema.xsd"/>
+ <import namespace="http://www.w3.org/2001/04/xmlenc#"
+ schemaLocation="http://www.w3.org/TR/2002/REC-xmlenc-core-20021210/xenc-schema.xsd"/>
+ <import namespace="urn:oasis:names:tc:SAML:2.0:assertion"
+ schemaLocation="saml-schema-assertion-2.0.xsd"/>
+ <import namespace="http://www.w3.org/XML/1998/namespace"
+ schemaLocation="http://www.w3.org/2001/xml.xsd"/>
+ <annotation>
+ <documentation>
+ Document identifier: saml-schema-metadata-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ Schema for SAML metadata, first published in SAML 2.0.
+ </documentation>
+ </annotation>
+
+ <simpleType name="entityIDType">
+ <restriction base="anyURI">
+ <maxLength value="1024"/>
+ </restriction>
+ </simpleType>
+ <complexType name="localizedNameType">
+ <simpleContent>
+ <extension base="string">
+ <attribute ref="xml:lang" use="required"/>
+ </extension>
+ </simpleContent>
+ </complexType>
+ <complexType name="localizedURIType">
+ <simpleContent>
+ <extension base="anyURI">
+ <attribute ref="xml:lang" use="required"/>
+ </extension>
+ </simpleContent>
+ </complexType>
+
+ <element name="Extensions" type="md:ExtensionsType"/>
+ <complexType final="#all" name="ExtensionsType">
+ <sequence>
+ <any namespace="##other" processContents="lax" maxOccurs="unbounded"/>
+ </sequence>
+ </complexType>
+
+ <complexType name="EndpointType">
+ <sequence>
+ <any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ <attribute name="Binding" type="anyURI" use="required"/>
+ <attribute name="Location" type="anyURI" use="required"/>
+ <attribute name="ResponseLocation" type="anyURI" use="optional"/>
+ <anyAttribute namespace="##other" processContents="lax"/>
+ </complexType>
+
+ <complexType name="IndexedEndpointType">
+ <complexContent>
+ <extension base="md:EndpointType">
+ <attribute name="index" type="unsignedShort" use="required"/>
+ <attribute name="isDefault" type="boolean" use="optional"/>
+ </extension>
+ </complexContent>
+ </complexType>
+
+ <element name="EntitiesDescriptor" type="md:EntitiesDescriptorType"/>
+ <complexType name="EntitiesDescriptorType">
+ <sequence>
+ <element ref="ds:Signature" minOccurs="0"/>
+ <element ref="md:Extensions" minOccurs="0"/>
+ <choice minOccurs="1" maxOccurs="unbounded">
+ <element ref="md:EntityDescriptor"/>
+ <element ref="md:EntitiesDescriptor"/>
+ </choice>
+ </sequence>
+ <attribute name="validUntil" type="dateTime" use="optional"/>
+ <attribute name="cacheDuration" type="duration" use="optional"/>
+ <attribute name="ID" type="ID" use="optional"/>
+ <attribute name="Name" type="string" use="optional"/>
+ </complexType>
+
+ <element name="EntityDescriptor" type="md:EntityDescriptorType"/>
+ <complexType name="EntityDescriptorType">
+ <sequence>
+ <element ref="ds:Signature" minOccurs="0"/>
+ <element ref="md:Extensions" minOccurs="0"/>
+ <choice>
+ <choice maxOccurs="unbounded">
+ <element ref="md:RoleDescriptor"/>
+ <element ref="md:IDPSSODescriptor"/>
+ <element ref="md:SPSSODescriptor"/>
+ <element ref="md:AuthnAuthorityDescriptor"/>
+ <element ref="md:AttributeAuthorityDescriptor"/>
+ <element ref="md:PDPDescriptor"/>
+ </choice>
+ <element ref="md:AffiliationDescriptor"/>
+ </choice>
+ <element ref="md:Organization" minOccurs="0"/>
+ <element ref="md:ContactPerson" minOccurs="0" maxOccurs="unbounded"/>
+ <element ref="md:AdditionalMetadataLocation" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ <attribute name="entityID" type="md:entityIDType" use="required"/>
+ <attribute name="validUntil" type="dateTime" use="optional"/>
+ <attribute name="cacheDuration" type="duration" use="optional"/>
+ <attribute name="ID" type="ID" use="optional"/>
+ <anyAttribute namespace="##other" processContents="lax"/>
+ </complexType>
+
+ <element name="Organization" type="md:OrganizationType"/>
+ <complexType name="OrganizationType">
+ <sequence>
+ <element ref="md:Extensions" minOccurs="0"/>
+ <element ref="md:OrganizationName" maxOccurs="unbounded"/>
+ <element ref="md:OrganizationDisplayName" maxOccurs="unbounded"/>
+ <element ref="md:OrganizationURL" maxOccurs="unbounded"/>
+ </sequence>
+ <anyAttribute namespace="##other" processContents="lax"/>
+ </complexType>
+ <element name="OrganizationName" type="md:localizedNameType"/>
+ <element name="OrganizationDisplayName" type="md:localizedNameType"/>
+ <element name="OrganizationURL" type="md:localizedURIType"/>
+ <element name="ContactPerson" type="md:ContactType"/>
+ <complexType name="ContactType">
+ <sequence>
+ <element ref="md:Extensions" minOccurs="0"/>
+ <element ref="md:Company" minOccurs="0"/>
+ <element ref="md:GivenName" minOccurs="0"/>
+ <element ref="md:SurName" minOccurs="0"/>
+ <element ref="md:EmailAddress" minOccurs="0" maxOccurs="unbounded"/>
+ <element ref="md:TelephoneNumber" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ <attribute name="contactType" type="md:ContactTypeType" use="required"/>
+ <anyAttribute namespace="##other" processContents="lax"/>
+ </complexType>
+ <element name="Company" type="string"/>
+ <element name="GivenName" type="string"/>
+ <element name="SurName" type="string"/>
+ <element name="EmailAddress" type="anyURI"/>
+ <element name="TelephoneNumber" type="string"/>
+ <simpleType name="ContactTypeType">
+ <restriction base="string">
+ <enumeration value="technical"/>
+ <enumeration value="support"/>
+ <enumeration value="administrative"/>
+ <enumeration value="billing"/>
+ <enumeration value="other"/>
+ </restriction>
+ </simpleType>
+
+ <element name="AdditionalMetadataLocation" type="md:AdditionalMetadataLocationType"/>
+ <complexType name="AdditionalMetadataLocationType">
+ <simpleContent>
+ <extension base="anyURI">
+ <attribute name="namespace" type="anyURI" use="required"/>
+ </extension>
+ </simpleContent>
+ </complexType>
+
+ <element name="RoleDescriptor" type="md:RoleDescriptorType"/>
+ <complexType name="RoleDescriptorType" abstract="true">
+ <sequence>
+ <element ref="ds:Signature" minOccurs="0"/>
+ <element ref="md:Extensions" minOccurs="0"/>
+ <element ref="md:KeyDescriptor" minOccurs="0" maxOccurs="unbounded"/>
+ <element ref="md:Organization" minOccurs="0"/>
+ <element ref="md:ContactPerson" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ <attribute name="ID" type="ID" use="optional"/>
+ <attribute name="validUntil" type="dateTime" use="optional"/>
+ <attribute name="cacheDuration" type="duration" use="optional"/>
+ <attribute name="protocolSupportEnumeration" type="md:anyURIListType" use="required"/>
+ <attribute name="errorURL" type="anyURI" use="optional"/>
+ <anyAttribute namespace="##other" processContents="lax"/>
+ </complexType>
+ <simpleType name="anyURIListType">
+ <list itemType="anyURI"/>
+ </simpleType>
+
+ <element name="KeyDescriptor" type="md:KeyDescriptorType"/>
+ <complexType name="KeyDescriptorType">
+ <sequence>
+ <element ref="ds:KeyInfo"/>
+ <element ref="md:EncryptionMethod" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ <attribute name="use" type="md:KeyTypes" use="optional"/>
+ </complexType>
+ <simpleType name="KeyTypes">
+ <restriction base="string">
+ <enumeration value="encryption"/>
+ <enumeration value="signing"/>
+ </restriction>
+ </simpleType>
+ <element name="EncryptionMethod" type="xenc:EncryptionMethodType"/>
+
+ <complexType name="SSODescriptorType" abstract="true">
+ <complexContent>
+ <extension base="md:RoleDescriptorType">
+ <sequence>
+ <element ref="md:ArtifactResolutionService" minOccurs="0" maxOccurs="unbounded"/>
+ <element ref="md:SingleLogoutService" minOccurs="0" maxOccurs="unbounded"/>
+ <element ref="md:ManageNameIDService" minOccurs="0" maxOccurs="unbounded"/>
+ <element ref="md:NameIDFormat" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ </extension>
+ </complexContent>
+ </complexType>
+ <element name="ArtifactResolutionService" type="md:IndexedEndpointType"/>
+ <element name="SingleLogoutService" type="md:EndpointType"/>
+ <element name="ManageNameIDService" type="md:EndpointType"/>
+ <element name="NameIDFormat" type="anyURI"/>
+
+ <element name="IDPSSODescriptor" type="md:IDPSSODescriptorType"/>
+ <complexType name="IDPSSODescriptorType">
+ <complexContent>
+ <extension base="md:SSODescriptorType">
+ <sequence>
+ <element ref="md:SingleSignOnService" maxOccurs="unbounded"/>
+ <element ref="md:NameIDMappingService" minOccurs="0" maxOccurs="unbounded"/>
+ <element ref="md:AssertionIDRequestService" minOccurs="0" maxOccurs="unbounded"/>
+ <element ref="md:AttributeProfile" minOccurs="0" maxOccurs="unbounded"/>
+ <element ref="saml:Attribute" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ <attribute name="WantAuthnRequestsSigned" type="boolean" use="optional"/>
+ </extension>
+ </complexContent>
+ </complexType>
+ <element name="SingleSignOnService" type="md:EndpointType"/>
+ <element name="NameIDMappingService" type="md:EndpointType"/>
+ <element name="AssertionIDRequestService" type="md:EndpointType"/>
+ <element name="AttributeProfile" type="anyURI"/>
+
+ <element name="SPSSODescriptor" type="md:SPSSODescriptorType"/>
+ <complexType name="SPSSODescriptorType">
+ <complexContent>
+ <extension base="md:SSODescriptorType">
+ <sequence>
+ <element ref="md:AssertionConsumerService" maxOccurs="unbounded"/>
+ <element ref="md:AttributeConsumingService" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ <attribute name="AuthnRequestsSigned" type="boolean" use="optional"/>
+ <attribute name="WantAssertionsSigned" type="boolean" use="optional"/>
+ </extension>
+ </complexContent>
+ </complexType>
+ <element name="AssertionConsumerService" type="md:IndexedEndpointType"/>
+ <element name="AttributeConsumingService" type="md:AttributeConsumingServiceType"/>
+ <complexType name="AttributeConsumingServiceType">
+ <sequence>
+ <element ref="md:ServiceName" maxOccurs="unbounded"/>
+ <element ref="md:ServiceDescription" minOccurs="0" maxOccurs="unbounded"/>
+ <element ref="md:RequestedAttribute" maxOccurs="unbounded"/>
+ </sequence>
+ <attribute name="index" type="unsignedShort" use="required"/>
+ <attribute name="isDefault" type="boolean" use="optional"/>
+ </complexType>
+ <element name="ServiceName" type="md:localizedNameType"/>
+ <element name="ServiceDescription" type="md:localizedNameType"/>
+ <element name="RequestedAttribute" type="md:RequestedAttributeType"/>
+ <complexType name="RequestedAttributeType">
+ <complexContent>
+ <extension base="saml:AttributeType">
+ <attribute name="isRequired" type="boolean" use="optional"/>
+ </extension>
+ </complexContent>
+ </complexType>
+
+ <element name="AuthnAuthorityDescriptor" type="md:AuthnAuthorityDescriptorType"/>
+ <complexType name="AuthnAuthorityDescriptorType">
+ <complexContent>
+ <extension base="md:RoleDescriptorType">
+ <sequence>
+ <element ref="md:AuthnQueryService" maxOccurs="unbounded"/>
+ <element ref="md:AssertionIDRequestService" minOccurs="0" maxOccurs="unbounded"/>
+ <element ref="md:NameIDFormat" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ </extension>
+ </complexContent>
+ </complexType>
+ <element name="AuthnQueryService" type="md:EndpointType"/>
+
+ <element name="PDPDescriptor" type="md:PDPDescriptorType"/>
+ <complexType name="PDPDescriptorType">
+ <complexContent>
+ <extension base="md:RoleDescriptorType">
+ <sequence>
+ <element ref="md:AuthzService" maxOccurs="unbounded"/>
+ <element ref="md:AssertionIDRequestService" minOccurs="0" maxOccurs="unbounded"/>
+ <element ref="md:NameIDFormat" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ </extension>
+ </complexContent>
+ </complexType>
+ <element name="AuthzService" type="md:EndpointType"/>
+
+ <element name="AttributeAuthorityDescriptor" type="md:AttributeAuthorityDescriptorType"/>
+ <complexType name="AttributeAuthorityDescriptorType">
+ <complexContent>
+ <extension base="md:RoleDescriptorType">
+ <sequence>
+ <element ref="md:AttributeService" maxOccurs="unbounded"/>
+ <element ref="md:AssertionIDRequestService" minOccurs="0" maxOccurs="unbounded"/>
+ <element ref="md:NameIDFormat" minOccurs="0" maxOccurs="unbounded"/>
+ <element ref="md:AttributeProfile" minOccurs="0" maxOccurs="unbounded"/>
+ <element ref="saml:Attribute" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ </extension>
+ </complexContent>
+ </complexType>
+ <element name="AttributeService" type="md:EndpointType"/>
+
+ <element name="AffiliationDescriptor" type="md:AffiliationDescriptorType"/>
+ <complexType name="AffiliationDescriptorType">
+ <sequence>
+ <element ref="ds:Signature" minOccurs="0"/>
+ <element ref="md:Extensions" minOccurs="0"/>
+ <element ref="md:AffiliateMember" maxOccurs="unbounded"/>
+ <element ref="md:KeyDescriptor" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ <attribute name="affiliationOwnerID" type="md:entityIDType" use="required"/>
+ <attribute name="validUntil" type="dateTime" use="optional"/>
+ <attribute name="cacheDuration" type="duration" use="optional"/>
+ <attribute name="ID" type="ID" use="optional"/>
+ <anyAttribute namespace="##other" processContents="lax"/>
+ </complexType>
+ <element name="AffiliateMember" type="md:entityIDType"/>
+</schema>
diff --git a/nefed.xml b/nefed.xml
index d83ce7548e23681e4f2a162462f2acef7f9478d0..c659eb5d95822c3e3db86dfc7eba8ea5e8fe458b 100644
--- a/nefed.xml
+++ b/nefed.xml
@@ -28003,7 +28003,7 @@ Gk3Mp05d1eUmuSx+la30QAXkFgNXDP3Cp3JSKyG5A6EWjhXTyuNZcI/ffo6tjNWg
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
- <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:emailAddress</NameIDFormat>
+ <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</NameIDFormat>
<AssertionConsumerService
isDefault="true"
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
@@ -28081,80 +28081,88 @@ Gk3Mp05d1eUmuSx+la30QAXkFgNXDP3Cp3JSKyG5A6EWjhXTyuNZcI/ffo6tjNWg
<EmailAddress>security@nebraska.edu</EmailAddress>
</ContactPerson>
</EntityDescriptor>
-<EntityDescriptor entityID="https://peru.starrezhousing.com/StarRezPortalX/"
- ID="_37db5b3f-6d47-4dc9-a5e5-c4be7bb5b6bf">
- <Extensions>
- <mdrpi:RegistrationInfo registrationAuthority="https://nebraska.edu/nefed" />
- <mdattr:EntityAttributes>
- <saml:Attribute Name="http://macedir.org/entity-category"
- NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
- <saml:AttributeValue>
- https://nebraska.edu/category/registered-by-nefed</saml:AttributeValue>
- </saml:Attribute>
- <saml:Attribute Name="http://shibboleth.net/ns/attributes/releaseAllValues"
- NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
- <saml:AttributeValue>
- unNUID</saml:AttributeValue>
- </saml:Attribute>
- </mdattr:EntityAttributes>
- <mdui:UIInfo>
- <mdui:DisplayName xml:lang="en">StarRez</mdui:DisplayName>
- <mdui:Description xml:lang="en">StarRez's PortalX product will be used for resident management at Peru State College.</mdui:Description>
- <mdui:InformationURL xml:lang="en">https://www.starrez.com/</mdui:InformationURL>
- <mdui:PrivacyStatementURL xml:lang="en">
- https://www.starrez.com/legal/privacy</mdui:PrivacyStatementURL>
- </mdui:UIInfo>
- </Extensions>
- <SPSSODescriptor ID="_50df5bf0-9d55-459f-99bc-2534309cf10c"
- protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"
- AuthnRequestsSigned="true"
- WantAssertionsSigned="false">
- <KeyDescriptor>
- <KeyInfo>
- <X509Data>
- <X509Certificate>
- MIIDvjCCAqYCAQAwDQYJKoZIhvcNAQELBQAwgaQxCzAJBgNVBAYTAkFVMREwDwYDVQQIDAhWaWN0b3JpYTESMBAGA1UEBwwJTWVsYm91cm5lMRAwDgYDVQQKDAdTdGFyUmV6MRUwEwYDVQQLDAxDbG91ZCAtIFBFUlUxIDAeBgNVBAMMF1BFUlUuc3RhcnJlemhvdXNpbmcuY29tMSMwIQYJKoZIhvcNAQkBFhRzdGFyY2FyZUBzdGFycmV6LmNvbTAeFw0yMzAzMDIxNjA3MzRaFw0yNTAzMDExNjA3MzRaMIGkMQswCQYDVQQGEwJBVTERMA8GA1UECAwIVmljdG9yaWExEjAQBgNVBAcMCU1lbGJvdXJuZTEQMA4GA1UECgwHU3RhclJlejEVMBMGA1UECwwMQ2xvdWQgLSBQRVJVMSAwHgYDVQQDDBdQRVJVLnN0YXJyZXpob3VzaW5nLmNvbTEjMCEGCSqGSIb3DQEJARYUc3RhcmNhcmVAc3RhcnJlei5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDXJk1Kpb3w44oPRGZZNlyY05LZhm/ZmJuJkThIMFb+9MbbVXwlTc2hQcaNgqk9Zj/K4Fq8RgogMfcIECYCrHS2Dob4kZfuXIYP7VIz+Veyaw583gF5wMTcJC3AAP2CxbdJO2c21nyEcftOIw8+DQvU3gmyn4OBt3azzrWPf5NfoRiCeG68R250SaI4xqgUw0oeLc4Ild/Htz3pwc/nQs1FWLI45KQt1TBmpphOMkuwU7fsiqAv9uwHVYAz9tRPFcURoEu9hpM3plMnIRQyVrGeHMd4YvA6gwvyMA34VNwUbjUu1UbjrE0lSRLgbCCfKWewY4sDGb1gvQE/3ISi7B1AgMBAAEwDQYJKoZIhvcNAQELBQADggEBAKWMoWCTowvDyCEFgv8bwCWzp9iigjbmSVCKAih5hEYBsQ/+yCLOrRq3kNPYzLZI/lNgXgnDUoW0gBF5EBqmy966FtNDifPqQ7Wzn4rdKXQPyA5umbAzWBEfjjb5bLNfMhyxgczMP6iY5hbEQv/JexZ6vbvDZ/YJHVoK/fYs2HFmU8bYTWYv/VJa7io0nrKAe+Snc7DrJhc4idZ+vBauH0mWxXS6ha6Lq2Nh1+ipbIqJGqDQ9t/HDGcn/HhDbDJ6JTO7jSyNvhhSD8wYu3gQdlm53nt8t56x2IC/ske930A8kK2lU/zJvimxkHVugp6W103PsQxvJVp7KAeZQoBrnW8=
- </X509Certificate>
- </X509Data>
- </KeyInfo>
- </KeyDescriptor>
- <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
- Location="https://peru.starrezhousing.com/StarRezPortalX/auth/Logout" />
- <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</NameIDFormat>
- <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
- Location="https://peru.starrezhousing.com/StarRezPortalX/RedirectLogin/StarNet.Core.AuthProviders.Shibboleth"
- index="0"
- isDefault="true" />
- </SPSSODescriptor>
- <Organization>
- <OrganizationName xml:lang="en">StarRez Inc.</OrganizationName>
- <OrganizationDisplayName xml:lang="en">StarRez Inc.</OrganizationDisplayName>
- <OrganizationURL xml:lang="en">http://www.starrez.com</OrganizationURL>
- </Organization>
- <ContactPerson contactType="technical">
- <GivenName>StarCare Technical Support</GivenName>
- <EmailAddress>starcare@starrez.com</EmailAddress>
- <TelephoneNumber>+1 877 859 6259</TelephoneNumber>
- </ContactPerson>
- <ContactPerson contactType="technical">
- <GivenName>Curtis Karel</GivenName>
- <EmailAddress>ckarel@peru.edu</EmailAddress>
- </ContactPerson>
- <ContactPerson contactType="support">
- <GivenName>Kathy Tynon</GivenName>
- <EmailAddress>ktynon@peru.edu</EmailAddress>
- </ContactPerson>
- <ContactPerson contactType="administrative">
- <GivenName>Gene Beardslee</GivenName>
- <EmailAddress>gbeardslee@peru.edu</EmailAddress>
- </ContactPerson>
- <ContactPerson contactType="other"
- remd:contactType="http://refeds.org/metadata/contactType/security">
- <GivenName>ITS
- Security</GivenName>
- <EmailAddress>security@nebraska.edu</EmailAddress>
- </ContactPerson>
-</EntityDescriptor>
+ <EntityDescriptor
+ entityID="https://peru.starrezhousing.com/StarRezPortalX/"
+ ID="_e598bf3e-3b7a-4dcf-8573-108c5df62ee9">
+ <Extensions>
+ <mdrpi:RegistrationInfo registrationAuthority="https://nebraska.edu/nefed" />
+ <mdattr:EntityAttributes>
+ <saml:Attribute Name="http://macedir.org/entity-category"
+ NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+ <saml:AttributeValue>
+ https://nebraska.edu/category/registered-by-nefed
+ </saml:AttributeValue>
+ </saml:Attribute>
+ <saml:Attribute Name="http://shibboleth.net/ns/attributes/releaseAllValues"
+ NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+ <saml:AttributeValue>
+ unNUID
+ </saml:AttributeValue>
+ </saml:Attribute>
+ </mdattr:EntityAttributes>
+ <mdui:UIInfo>
+ <mdui:DisplayName xml:lang="en">StarRez</mdui:DisplayName>
+ <mdui:Description xml:lang="en">StarRez's PortalX product will be used for resident management at Peru State College.</mdui:Description>
+ <mdui:InformationURL xml:lang="en">https://www.starrez.com/</mdui:InformationURL>
+ <mdui:PrivacyStatementURL xml:lang="en">
+ https://www.starrez.com/legal/privacy</mdui:PrivacyStatementURL>
+ </mdui:UIInfo>
+ </Extensions>
+ <SPSSODescriptor
+ ID="_968bcc48-a5f4-4c25-848b-c758f21826ba"
+ protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"
+ AuthnRequestsSigned="true"
+ WantAssertionsSigned="false">
+ <KeyDescriptor>
+ <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
+ <X509Data>
+ <X509Certificate>
+ MIIDvjCCAqYCAQAwDQYJKoZIhvcNAQELBQAwgaQxCzAJBgNVBAYTAkFVMREwDwYDVQQIDAhWaWN0b3JpYTESMBAGA1UEBwwJTWVsYm91cm5lMRAwDgYDVQQKDAdTdGFyUmV6MRUwEwYDVQQLDAxDbG91ZCAtIFBFUlUxIDAeBgNVBAMMF1BFUlUuc3RhcnJlemhvdXNpbmcuY29tMSMwIQYJKoZIhvcNAQkBFhRzdGFyY2FyZUBzdGFycmV6LmNvbTAeFw0yMzAzMDIxNjA3MzRaFw0yNTAzMDExNjA3MzRaMIGkMQswCQYDVQQGEwJBVTERMA8GA1UECAwIVmljdG9yaWExEjAQBgNVBAcMCU1lbGJvdXJuZTEQMA4GA1UECgwHU3RhclJlejEVMBMGA1UECwwMQ2xvdWQgLSBQRVJVMSAwHgYDVQQDDBdQRVJVLnN0YXJyZXpob3VzaW5nLmNvbTEjMCEGCSqGSIb3DQEJARYUc3RhcmNhcmVAc3RhcnJlei5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDXJk1Kpb3w44oPRGZZNlyY05LZhm/ZmJuJkThIMFb+9MbbVXwlTc2hQcaNgqk9Zj/K4Fq8RgogMfcIECYCrHS2Dob4kZfuXIYP7VIz+Veyaw583gF5wMTcJC3AAP2CxbdJO2c21nyEcftOIw8+DQvU3gmyn4OBt3azzrWPf5NfoRiCeG68R250SaI4xqgUw0oeLc4Ild/Htz3pwc/nQs1FWLI45KQt1TBmpphOMkuwU7fsiqAv9uwHVYAz9tRPFcURoEu9hpM3plMnIRQyVrGeHMd4YvA6gwvyMA34VNwUbjUu1UbjrE0lSRLgbCCfKWewY4sDGb1gvQE/3ISi7B1AgMBAAEwDQYJKoZIhvcNAQELBQADggEBAKWMoWCTowvDyCEFgv8bwCWzp9iigjbmSVCKAih5hEYBsQ/+yCLOrRq3kNPYzLZI/lNgXgnDUoW0gBF5EBqmy966FtNDifPqQ7Wzn4rdKXQPyA5umbAzWBEfjjb5bLNfMhyxgczMP6iY5hbEQv/JexZ6vbvDZ/YJHVoK/fYs2HFmU8bYTWYv/VJa7io0nrKAe+Snc7DrJhc4idZ+vBauH0mWxXS6ha6Lq2Nh1+ipbIqJGqDQ9t/HDGcn/HhDbDJ6JTO7jSyNvhhSD8wYu3gQdlm53nt8t56x2IC/ske930A8kK2lU/zJvimxkHVugp6W103PsQxvJVp7KAeZQoBrnW8=
+ </X509Certificate>
+ </X509Data>
+ </KeyInfo>
+ </KeyDescriptor>
+ <SingleLogoutService
+ Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
+ Location="https://peru.starrezhousing.com/StarRezPortalX/auth/Logout"/>
+ <NameIDFormat>
+ urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified
+ </NameIDFormat>
+ <AssertionConsumerService
+ Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
+ Location="https://peru.starrezhousing.com/StarRezPortalX/RedirectLogin/StarNet.Core.AuthProviders.Shibboleth"
+ index="0"
+ isDefault="true"/>
+ </SPSSODescriptor>
+ <Organization>
+ <OrganizationName xml:lang="en">StarRez Inc.</OrganizationName>
+ <OrganizationDisplayName xml:lang="en">StarRez Inc.</OrganizationDisplayName>
+ <OrganizationURL xml:lang="en">http://www.starrez.com</OrganizationURL>
+ </Organization>
+ <ContactPerson contactType="technical">
+ <GivenName>StarCare Technical Support</GivenName>
+ <EmailAddress>starcare@starrez.com</EmailAddress>
+ <TelephoneNumber>+1 877 859 6259</TelephoneNumber>
+ </ContactPerson>
+ <ContactPerson contactType="technical">
+ <GivenName>Curtis Karel</GivenName>
+ <EmailAddress>ckarel@peru.edu</EmailAddress>
+ </ContactPerson>
+ <ContactPerson contactType="support">
+ <GivenName>Kathy Tynon</GivenName>
+ <EmailAddress>ktynon@peru.edu</EmailAddress>
+ </ContactPerson>
+ <ContactPerson contactType="administrative">
+ <GivenName>Gene Beardslee</GivenName>
+ <EmailAddress>gbeardslee@peru.edu</EmailAddress>
+ </ContactPerson>
+ <ContactPerson contactType="other"
+ remd:contactType="http://refeds.org/metadata/contactType/security">
+ <GivenName>ITS
+ Security</GivenName>
+ <EmailAddress>security@nebraska.edu</EmailAddress>
+ </ContactPerson>
+ </EntityDescriptor>
<EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_36fb4f6c-8ef1-4da1-90d2-c1c67cbb5cf3"
entityID="https://sso.livehealthyignite.com/saml/metadata">
<Extensions>