Merge branch '318-onboard-sailpoint-iga-metadata-for-dev-tst-prd' into 'master'

Resolve "Onboard SailPoint IGA Metadata for DEV-TST-PRD" Closes #318 See merge request !437

Merge branch '318-onboard-sailpoint-iga-metadata-for-dev-tst-prd' into 'master'
ece43b98 · andrew.costa · 477146d7 · 0293ab80 · ece43b98
Commit ece43b98 authored 1 year ago by andrew.costa
--- a/nefed.xml
+++ b/nefed.xml
@@ -30310,4 +30310,495 @@ and do *NOT* provide it in real time to your partners.
            <EmailAddress>security@nebraska.edu</EmailAddress>
        </ContactPerson>
    </EntityDescriptor>
+    <EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"
+  ID="_c2e9a3828e882143a84140bc9a6bde33b7a8592f" entityID="https://iga-dev.nebraska.edu/shibboleth">
+
+  <Extensions xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport">
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512" />
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384" />
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256" />
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224" />
+    <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1" />
+    <mdrpi:RegistrationInfo registrationAuthority="https://nebraska.edu/nefed" />
+            <mdattr:EntityAttributes>
+                <saml:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+                    <saml:AttributeValue>https://nebraska.edu/category/registered-by-nefed</saml:AttributeValue>
+                </saml:Attribute>
+                <saml:Attribute Name="http://shibboleth.net/ns/attributes/releaseAllValues" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+                    <saml:AttributeValue>unNUID</saml:AttributeValue>
+                </saml:Attribute>
+            </mdattr:EntityAttributes>
+            <mdui:UIInfo>
+                <mdui:DisplayName xml:lang="en">SailPoint IGA DEV</mdui:DisplayName>
+                <mdui:Description xml:lang="en">SailPoint IGA DEV</mdui:Description>
+                <mdui:InformationURL xml:lang="en">https://iga-dev.nebraska.edu</mdui:InformationURL>
+                <mdui:PrivacyStatementURL xml:lang="en">https://its.nebraska.edu/policies-processes/idm-privacy-policy</mdui:PrivacyStatementURL>
+                <mdui:Logo height="85" width="141" xml:lang="en"></mdui:Logo>
+            </mdui:UIInfo>
+  </Extensions>
+
+  <SPSSODescriptor
+    protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol">
+    <Extensions>
+      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init"
+        Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init"
+        Location="https://iga-dev.nebraska.edu/Shibboleth.sso/Login" />
+      <idpdisc:DiscoveryResponse
+        xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol"
+        Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol"
+        Location="https://iga-dev.nebraska.edu/Shibboleth.sso/Login" index="1" />
+    </Extensions>
+    <KeyDescriptor use="signing">
+      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+        <ds:KeyName>its-iam-sp-da1.nebraska.edu</ds:KeyName>
+        <ds:X509Data>
+          <ds:X509SubjectName>CN=its-iam-sp-da1.nebraska.edu</ds:X509SubjectName>
+          <ds:X509Certificate>MIIEGDCCAoCgAwIBAgIJANLwqRc9Cig8MA0GCSqGSIb3DQEBCwUAMCYxJDAiBgNV
+            BAMTG2l0cy1pYW0tc3AtZGExLm5lYnJhc2thLmVkdTAeFw0yMDAxMjIyMjE2NTVa
+            Fw0zMDAxMTkyMjE2NTVaMCYxJDAiBgNVBAMTG2l0cy1pYW0tc3AtZGExLm5lYnJh
+            c2thLmVkdTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBAMrNDG2x50k1
+            84FcyLZ3pAyq+4B08HpXRV5Ei1O1PuOIbAJ7jZBvPvaSHfZ3SYh+RXr8L9S0xp5J
+            7UDQfLNPhDV5CnncESMVw1UlOQfZ+rtgCFnlBTbSUfxIUU0XrvVF26RVTWgMR4Wp
+            dp64emSYWg74WLyD2CDpzbPU7E1041bfosOHQmFFqvsH28ds/T/ffLXMrqUaJAm6
+            /sY7GCOzSi6sRmpFOr41r5aRq7SlUB1wEkZmwRjXJ+sSCMBIH/TdweWkqCsRdn8j
+            yaAfITOWJkjA3KNdH4/892G3aWbXz3X/W0ohJUKl+ZrU2X84rW0Pm8TDASQTYrCk
+            3XPs0Oof6awwcB+e3+fDrj0lshkKC+Qrq2Qy2quw+YeAWrRVK9jg/gKNeCuaSQse
+            XCVOYJSlfLEzkEOyX8XYOGIBflEy8Ii3BBS5JLck0L7GQ9p9croUzJOijQiwXtZ7
+            mEpj1sVypqV67qHDp42ZSM4s2btL6oep0oxn41euIkkuVuS9iTichwIDAQABo0kw
+            RzAmBgNVHREEHzAdghtpdHMtaWFtLXNwLWRhMS5uZWJyYXNrYS5lZHUwHQYDVR0O
+            BBYEFMRkl7f9D0dkuAeYoRTNtkDtTcWwMA0GCSqGSIb3DQEBCwUAA4IBgQBUq8of
+            ZUMYmDuEAo1X+aQz3IlNuQTbz8zWnTxHCRBwpB/DtREJI6kPhHSSxG4obiM8nM3n
+            rr2ejW+b7Km8mT3ZkAAWdqz7820+W7K+86xJtINwTEOq78gG06R95ui7uGkWsvHd
+            gQCx32QQPDtv5gyk+9+Q0TiYPc9vrOw62CBIoebFKHQsjUZI4ibi7ms6XfM2yAlL
+            wrrjSTujrMCsF5RHnX9CMxvohWM2Yn9fXTXMUwOqJnbVLuWMAhEouni61V2r2yOA
+            EwFNgJJTJ8SLBW1fK9+M7rCJoxypphUBS5SUxLpnhmWYJ/o3GQaCgWY37ZIOscFQ
+            J6H2NV0guSE5WvEJyZYjd3fXzYX7kr1wrZ7Dr++pE7FjBgvxWGBLZphJxXFOJg3t
+            wbMTBHCmG1gBY78c21+S/o+mC7ZZIa5R+pm2eSON6waeh5tUeEg0gs0S78+kGM6x
+            lLkZh91oTvV3asTPJP/0Zg3TjN2T95CNdlT88Q2Y3LA7qYwrV4Y2EeZC78c=
+</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+    </KeyDescriptor>
+    <KeyDescriptor use="encryption">
+      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+        <ds:KeyName>its-iam-sp-da1.nebraska.edu</ds:KeyName>
+        <ds:X509Data>
+          <ds:X509SubjectName>CN=its-iam-sp-da1.nebraska.edu</ds:X509SubjectName>
+          <ds:X509Certificate>MIIEGDCCAoCgAwIBAgIJAKkojpVnlgmSMA0GCSqGSIb3DQEBCwUAMCYxJDAiBgNV
+            BAMTG2l0cy1pYW0tc3AtZGExLm5lYnJhc2thLmVkdTAeFw0yMDAxMjIyMjE2NTVa
+            Fw0zMDAxMTkyMjE2NTVaMCYxJDAiBgNVBAMTG2l0cy1pYW0tc3AtZGExLm5lYnJh
+            c2thLmVkdTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBAL5Aw4sccyws
+            6YZlTazAsmwDHuoPi0DANNc6C1T7KtBah3kDcXSL2ZdlEs7/cc6Aw4IQ3XLScRn+
+            qFdKLYL8ofW9db9PC4iZan/BSusznjpHYMkZbnz57+Vr4Ykwl8TiNqa+nk5lHTxE
+            g6/4LXBpK2nXc7QVFwt/IF/to977e+dl0o2fUmFIgsm//u4ugAFQX+3UvwEN9241
+            UwOLG+lIg5NTJpVAll/td/stqmkOo/M/tnMmGk3Fbc3DZrUrUN/hKg3YhgKxlgNn
+            sEeDLjw8BOsNO4drhFUDE2VN+O4ukRVg/4yaPy+2BBkIcq2qmBSeypGNDQHHEH1J
+            ZNyC0X/2WCL0LPUFv7SkCr5Vep53lSbLCbAl6thikRoS/hA2CwSwEFUABQ6lfGmr
+            SIWKHmt7vYrZNT+vR6WexHRZ+rckQxpB+pvPs17uF+DAslRIqzbJnu2ywv5//iyQ
+            pLimZw0lh+kWNIW0SWdOeF9kPoEpgjFszTo19PS78OzeZ53EeU5LZwIDAQABo0kw
+            RzAmBgNVHREEHzAdghtpdHMtaWFtLXNwLWRhMS5uZWJyYXNrYS5lZHUwHQYDVR0O
+            BBYEFN1oZi+SPw+yEN0JsA51siYOAtoFMA0GCSqGSIb3DQEBCwUAA4IBgQAPwkhw
+            2/GAwd3T+pzk9e9Azq0T63FFV5ZOuOcFD4SiqyWq7cKwoA6SDNadYvmtq3+ZBr1y
+            RV+ktBj7JivKQTakduwWiJRcCB43ILd42yC5S5r6nz+tilq5IOyI6Oh/xMzrfruI
+            vPXZDHKjcVOm5eYU5aBW561bNLVJUhHGgdxv20LNgf67e/YpBrG33zOJXDSk/3rU
+            PopO5qDqMoKrcxhwjZT/h15Qmwk4QwsmeBWVIJQr+wsPGcOCUr+xab0UzSwGyVNe
+            rRNYS/pdr4vD/BIrjWbhwPNe9OFAkHRIMGKSrfO0zoR8L2k6QioaU8I7cWLKLAYM
+            h66732gmoQlVNCb87oTqEjyP4w13exoTMNGgA86WfELEiNR52xaEdC7xA5gdg9BC
+            xhADCpSr9/uifBMAowomcXYlY31bjS6XK7yzvPokh7Zg23o307jaDug+ULoiyrjP
+            yVX+/r+FBx+Rvq039NawiVIwSyAT0GMPxkzALmxazlCukyD1icqEzMhRzrQ=
+</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+      <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p" />
+    </KeyDescriptor>
+    <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP"
+      Location="https://iga-dev.nebraska.edu/Shibboleth.sso/Artifact/SOAP" index="1" />
+    <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP"
+      Location="https://iga-dev.nebraska.edu/Shibboleth.sso/SLO/SOAP" />
+    <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
+      Location="https://iga-dev.nebraska.edu/Shibboleth.sso/SLO/Redirect" />
+    <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
+      Location="https://iga-dev.nebraska.edu/Shibboleth.sso/SLO/POST" />
+    <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact"
+      Location="https://iga-dev.nebraska.edu/Shibboleth.sso/SLO/Artifact" />
+    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
+      Location="https://iga-dev.nebraska.edu/Shibboleth.sso/SAML2/POST" index="1" />
+    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign"
+      Location="https://iga-dev.nebraska.edu/Shibboleth.sso/SAML2/POST-SimpleSign" index="2" />
+    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact"
+      Location="https://iga-dev.nebraska.edu/Shibboleth.sso/SAML2/Artifact" index="3" />
+    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS"
+      Location="https://iga-dev.nebraska.edu/Shibboleth.sso/SAML2/ECP" index="4" />
+    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post"
+      Location="https://iga-dev.nebraska.edu/Shibboleth.sso/SAML/POST" index="5" />
+    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01"
+      Location="https://iga-dev.nebraska.edu/Shibboleth.sso/SAML/Artifact" index="6" />
+  </SPSSODescriptor>
+  <Organization>
+    <OrganizationName xml:lang="en">SailPoint IGA DEV</OrganizationName>
+    <OrganizationDisplayName xml:lang="en">SailPoint IGA DEV</OrganizationDisplayName>
+    <OrganizationURL xml:lang="en">https://iga-dev.nebraska.edu</OrganizationURL>
+</Organization>
+<ContactPerson contactType="technical">
+    <GivenName>Andy Costa</GivenName>
+    <EmailAddress>andrew.costa@nebraska.edu</EmailAddress>
+</ContactPerson>
+<ContactPerson contactType="administrative">
+    <GivenName>Ryan Rumbaugh</GivenName>
+    <EmailAddress>rrumbaugh@nebraska.edu</EmailAddress>
+</ContactPerson>
+<ContactPerson contactType="support">
+    <GivenName>ITS IAM Team</GivenName>
+    <EmailAddress>its-sec-iam@nebraska.edu</EmailAddress>
+</ContactPerson>
+<ContactPerson contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
+    <GivenName>ITS Security</GivenName>
+    <EmailAddress>security@nebraska.edu</EmailAddress>
+</ContactPerson>
+</EntityDescriptor>
+<EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"
+  ID="_0a8ffebe682ecbe0e8ba63c8996b28655a49e2f5" entityID="https://iga-tst.nebraska.edu/shibboleth">
+
+  <Extensions xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport">
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512" />
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384" />
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256" />
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224" />
+    <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1" />
+    <mdrpi:RegistrationInfo registrationAuthority="https://nebraska.edu/nefed" />
+            <mdattr:EntityAttributes>
+                <saml:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+                    <saml:AttributeValue>https://nebraska.edu/category/registered-by-nefed</saml:AttributeValue>
+                </saml:Attribute>
+                <saml:Attribute Name="http://shibboleth.net/ns/attributes/releaseAllValues" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+                    <saml:AttributeValue>unNUID</saml:AttributeValue>
+                </saml:Attribute>
+            </mdattr:EntityAttributes>
+            <mdui:UIInfo>
+                <mdui:DisplayName xml:lang="en">SailPoint IGA TST</mdui:DisplayName>
+                <mdui:Description xml:lang="en">SailPoint IGA TST</mdui:Description>
+                <mdui:InformationURL xml:lang="en">https://iga-tst.nebraska.edu</mdui:InformationURL>
+                <mdui:PrivacyStatementURL xml:lang="en">https://its.nebraska.edu/policies-processes/idm-privacy-policy</mdui:PrivacyStatementURL>
+                <mdui:Logo height="85" width="141" xml:lang="en"></mdui:Logo>
+            </mdui:UIInfo>
+  </Extensions>
+
+  <SPSSODescriptor
+    protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol">
+    <Extensions>
+      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init"
+        Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init"
+        Location="https://iga-tst.nebraska.edu/Shibboleth.sso/Login" />
+      <idpdisc:DiscoveryResponse
+        xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol"
+        Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol"
+        Location="https://iga-tst.nebraska.edu/Shibboleth.sso/Login" index="1" />
+    </Extensions>
+    <KeyDescriptor use="signing">
+      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+        <ds:KeyName>uncsidiquit1</ds:KeyName>
+        <ds:X509Data>
+          <ds:X509SubjectName>CN=uncsidiquit1</ds:X509SubjectName>
+          <ds:X509Certificate>MIID6zCCAlOgAwIBAgIJAMQhAxLAEHlnMA0GCSqGSIb3DQEBCwUAMBcxFTATBgNV
+            BAMTDHVuY3NpZGlxdWl0MTAeFw0xNzAyMDMxNTU0MzNaFw0yNzAyMDExNTU0MzNa
+            MBcxFTATBgNVBAMTDHVuY3NpZGlxdWl0MTCCAaIwDQYJKoZIhvcNAQEBBQADggGP
+            ADCCAYoCggGBAPBY8VKOf1i8IvOMTKqnPdUjNrB6GCR/7SBxu96cSB4oCzWf9nq5
+            GtbisEyCFvF/pOWoVDHRfHor/a5FfbBzIXj/C9rJlAKtid0LDHpOtUPRYATyvNKC
+            7cusvxJ5qeNs5xKW0pIpHvIjRmfamq5LkUNrblIepL6MtYvC9Nbhi2JtCqNOdZcp
+            CjAaVbLk+bp6JhI+kMyU43HuxvjJ30L9utRyLW3uxOPfWwgZKqb5oXaMoTnmPGp2
+            JlDnAOd6lRF4XM14M1o1vc1HM5XD1kEf+hwrXDGUa295vg6ROphYRT2a1xPgBSHG
+            Ea1BxglOFWVD1RMqG4d2Og+5cwU2fJFmC3Rsvy6xkBKQsmNBFt6aGMQiQhjA/DK0
+            ag6fOuxNGq1qF8oLIq+5OUnTHW1xXvs6EEySr6UaPUtMcqKTCszRNF1TuReYyYWU
+            MNhDMQLt+XfX+nKhtnBfRsOHYqEkintc4AzPHQXPtC6UXqr3oRwh5XIjLuD2jWni
+            Ra0bZ2Hh+p3+rwIDAQABozowODAXBgNVHREEEDAOggx1bmNzaWRpcXVpdDEwHQYD
+            VR0OBBYEFMFjE0AAKZylpKWtc9eq5c2aZ0K1MA0GCSqGSIb3DQEBCwUAA4IBgQCq
+            EcIE1622nDF1a4Qr9Jn58Le8xMpWGW7XxPS7O05zA244wOzM75MHPoW87xwmdpVS
+            1MOsmYACvBEH4HdOYzl3jMpSnCE+dXF1yY+r1Pn2X5rhBaItr7TItB5uhaRmb16A
+            WMFHXvU/FRM91ZkE4wWHAgbScjWwvqhv/LGXzdEY2hB2welr510uArReMQSxomWZ
+            SRbrbWl/wrX9Dhb6+bUCKrg3cRbzyimmoc3jOVRa/BvFYBfsNGhrAJLMELnDMPiJ
+            KEiujMv6f8r0EL9mD8HwopWwW97MGNOpWQ0rkn0wQujo4s22xWRus+erd/mHRMBJ
+            lv2rn+wn7/N/U/hToLXgsupChYkBCT2Fx3B+3nRFqF8+arwePdEhi8ADtZgd+Zzj
+            1eukV73h6dT10VQJLJZgdFoM3YRTSdXBD5xeFa9SeVWJmE0iypqvjbQDc6Ag7lKr
+            ysovLJPn5qAkBl4ZYlycrN0m8yW+6YasJLrnMiSr1ULr9J8lVSsOzXY6wGMXJ7E=
+</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+    </KeyDescriptor>
+    <KeyDescriptor use="encryption">
+      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+        <ds:KeyName>uncsidiquit1</ds:KeyName>
+        <ds:X509Data>
+          <ds:X509SubjectName>CN=uncsidiquit1</ds:X509SubjectName>
+          <ds:X509Certificate>MIID6zCCAlOgAwIBAgIJAMQhAxLAEHlnMA0GCSqGSIb3DQEBCwUAMBcxFTATBgNV
+            BAMTDHVuY3NpZGlxdWl0MTAeFw0xNzAyMDMxNTU0MzNaFw0yNzAyMDExNTU0MzNa
+            MBcxFTATBgNVBAMTDHVuY3NpZGlxdWl0MTCCAaIwDQYJKoZIhvcNAQEBBQADggGP
+            ADCCAYoCggGBAPBY8VKOf1i8IvOMTKqnPdUjNrB6GCR/7SBxu96cSB4oCzWf9nq5
+            GtbisEyCFvF/pOWoVDHRfHor/a5FfbBzIXj/C9rJlAKtid0LDHpOtUPRYATyvNKC
+            7cusvxJ5qeNs5xKW0pIpHvIjRmfamq5LkUNrblIepL6MtYvC9Nbhi2JtCqNOdZcp
+            CjAaVbLk+bp6JhI+kMyU43HuxvjJ30L9utRyLW3uxOPfWwgZKqb5oXaMoTnmPGp2
+            JlDnAOd6lRF4XM14M1o1vc1HM5XD1kEf+hwrXDGUa295vg6ROphYRT2a1xPgBSHG
+            Ea1BxglOFWVD1RMqG4d2Og+5cwU2fJFmC3Rsvy6xkBKQsmNBFt6aGMQiQhjA/DK0
+            ag6fOuxNGq1qF8oLIq+5OUnTHW1xXvs6EEySr6UaPUtMcqKTCszRNF1TuReYyYWU
+            MNhDMQLt+XfX+nKhtnBfRsOHYqEkintc4AzPHQXPtC6UXqr3oRwh5XIjLuD2jWni
+            Ra0bZ2Hh+p3+rwIDAQABozowODAXBgNVHREEEDAOggx1bmNzaWRpcXVpdDEwHQYD
+            VR0OBBYEFMFjE0AAKZylpKWtc9eq5c2aZ0K1MA0GCSqGSIb3DQEBCwUAA4IBgQCq
+            EcIE1622nDF1a4Qr9Jn58Le8xMpWGW7XxPS7O05zA244wOzM75MHPoW87xwmdpVS
+            1MOsmYACvBEH4HdOYzl3jMpSnCE+dXF1yY+r1Pn2X5rhBaItr7TItB5uhaRmb16A
+            WMFHXvU/FRM91ZkE4wWHAgbScjWwvqhv/LGXzdEY2hB2welr510uArReMQSxomWZ
+            SRbrbWl/wrX9Dhb6+bUCKrg3cRbzyimmoc3jOVRa/BvFYBfsNGhrAJLMELnDMPiJ
+            KEiujMv6f8r0EL9mD8HwopWwW97MGNOpWQ0rkn0wQujo4s22xWRus+erd/mHRMBJ
+            lv2rn+wn7/N/U/hToLXgsupChYkBCT2Fx3B+3nRFqF8+arwePdEhi8ADtZgd+Zzj
+            1eukV73h6dT10VQJLJZgdFoM3YRTSdXBD5xeFa9SeVWJmE0iypqvjbQDc6Ag7lKr
+            ysovLJPn5qAkBl4ZYlycrN0m8yW+6YasJLrnMiSr1ULr9J8lVSsOzXY6wGMXJ7E=
+</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+      <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p" />
+    </KeyDescriptor>
+    <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP"
+      Location="https://iga-tst.nebraska.edu/Shibboleth.sso/Artifact/SOAP" index="1" />
+    <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP"
+      Location="https://iga-tst.nebraska.edu/Shibboleth.sso/SLO/SOAP" />
+    <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
+      Location="https://iga-tst.nebraska.edu/Shibboleth.sso/SLO/Redirect" />
+    <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
+      Location="https://iga-tst.nebraska.edu/Shibboleth.sso/SLO/POST" />
+    <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact"
+      Location="https://iga-tst.nebraska.edu/Shibboleth.sso/SLO/Artifact" />
+    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
+      Location="https://iga-tst.nebraska.edu/Shibboleth.sso/SAML2/POST" index="1" />
+    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign"
+      Location="https://iga-tst.nebraska.edu/Shibboleth.sso/SAML2/POST-SimpleSign" index="2" />
+    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact"
+      Location="https://iga-tst.nebraska.edu/Shibboleth.sso/SAML2/Artifact" index="3" />
+    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS"
+      Location="https://iga-tst.nebraska.edu/Shibboleth.sso/SAML2/ECP" index="4" />
+    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post"
+      Location="https://iga-tst.nebraska.edu/Shibboleth.sso/SAML/POST" index="5" />
+    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01"
+      Location="https://iga-tst.nebraska.edu/Shibboleth.sso/SAML/Artifact" index="6" />
+  </SPSSODescriptor>
+  <Organization>
+    <OrganizationName xml:lang="en">SailPoint IGA TST</OrganizationName>
+    <OrganizationDisplayName xml:lang="en">SailPoint IGA TST</OrganizationDisplayName>
+    <OrganizationURL xml:lang="en">https://iga-tst.nebraska.edu</OrganizationURL>
+</Organization>
+<ContactPerson contactType="technical">
+    <GivenName>Andy Costa</GivenName>
+    <EmailAddress>andrew.costa@nebraska.edu</EmailAddress>
+</ContactPerson>
+<ContactPerson contactType="administrative">
+    <GivenName>Ryan Rumbaugh</GivenName>
+    <EmailAddress>rrumbaugh@nebraska.edu</EmailAddress>
+</ContactPerson>
+<ContactPerson contactType="support">
+    <GivenName>ITS IAM Team</GivenName>
+    <EmailAddress>its-sec-iam@nebraska.edu</EmailAddress>
+</ContactPerson>
+<ContactPerson contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
+    <GivenName>ITS Security</GivenName>
+    <EmailAddress>security@nebraska.edu</EmailAddress>
+</ContactPerson>
+</EntityDescriptor>
+<EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"
+  ID="_ac8ea19c4804878ecbc8c18b99a1a14be531cc79" entityID="https://iga.nebraska.edu/shibboleth">
+
+  <Extensions xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport">
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512" />
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384" />
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256" />
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224" />
+    <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
+    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1" />
+    <mdrpi:RegistrationInfo registrationAuthority="https://nebraska.edu/nefed" />
+            <mdattr:EntityAttributes>
+                <saml:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+                    <saml:AttributeValue>https://nebraska.edu/category/registered-by-nefed</saml:AttributeValue>
+                </saml:Attribute>
+                <saml:Attribute Name="http://shibboleth.net/ns/attributes/releaseAllValues" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+                    <saml:AttributeValue>unNUID</saml:AttributeValue>
+                </saml:Attribute>
+            </mdattr:EntityAttributes>
+            <mdui:UIInfo>
+                <mdui:DisplayName xml:lang="en">SailPoint IGA</mdui:DisplayName>
+                <mdui:Description xml:lang="en">SailPoint IGA</mdui:Description>
+                <mdui:InformationURL xml:lang="en">https://iga.nebraska.edu</mdui:InformationURL>
+                <mdui:PrivacyStatementURL xml:lang="en">https://its.nebraska.edu/policies-processes/idm-privacy-policy</mdui:PrivacyStatementURL>
+                <mdui:Logo height="85" width="141" xml:lang="en"></mdui:Logo>
+            </mdui:UIInfo>
+  </Extensions>
+
+  <SPSSODescriptor
+    protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol">
+    <Extensions>
+      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init"
+        Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init"
+        Location="https://iga.nebraska.edu/Shibboleth.sso/Login" />
+      <idpdisc:DiscoveryResponse
+        xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol"
+        Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol"
+        Location="https://iga.nebraska.edu/Shibboleth.sso/Login" index="1" />
+    </Extensions>
+    <KeyDescriptor use="signing">
+      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+        <ds:KeyName>uncsidiquip1</ds:KeyName>
+        <ds:X509Data>
+          <ds:X509SubjectName>CN=uncsidiquip1</ds:X509SubjectName>
+          <ds:X509Certificate>MIID6zCCAlOgAwIBAgIJAPuP1wvhzigRMA0GCSqGSIb3DQEBCwUAMBcxFTATBgNV
+            BAMTDHVuY3NpZGlxdWlwMTAeFw0xNzAzMjAxMjM0NTFaFw0yNzAzMTgxMjM0NTFa
+            MBcxFTATBgNVBAMTDHVuY3NpZGlxdWlwMTCCAaIwDQYJKoZIhvcNAQEBBQADggGP
+            ADCCAYoCggGBALE2zM2/VY2wlLTN1/mdmvqN26HZSYU7IlA9+i+om61wdjL+ZKFJ
+            xxp6ycvhMBwhitph9rBEeLi23KrrxEEmssxQbwhqLJuPCvMzyeaEakW8maswyiw7
+            Ee72taoY4L5qYhrcCvo/9g+UWGGz3FPrJthf0joF5KeWhRgW4k9SVrRAJMWz0OLT
+            X88R6yRgYDX0g+F1aNHwCLbFo+85+0h2CK5QkKwiB8XVrcaplEX9OmigfQFu5BGf
+            TcXd/Hm1p/9TEcvaxy9J6gyKN00BFReeRXoE8pG1AEyqRKEvqgufgGJVb+xJj88y
+            K/q6qoqUR4vZ3z3fGbhyXDFY0o9A9cidW+pWvhEh1P90dUdi7CPnOx6+97GsLJGZ
+            aGhojpwO+QAwYd9MW4IDetevYTK3iMsr0DWWrbvzS0dnvPUASFGuMWj+ISoSy+cA
+            K53/kZoTu+nHJ7BKLYcKZ4oeL0A3Kguqf4vRGxncGx6KpJCamqGB62uXsAqZ3m5w
+            q+OTXnHz4gEQ2QIDAQABozowODAXBgNVHREEEDAOggx1bmNzaWRpcXVpcDEwHQYD
+            VR0OBBYEFN3hdSMt60Cg00SCAKrr9kTNBuTaMA0GCSqGSIb3DQEBCwUAA4IBgQAH
+            qh8bLny1cJIqCp9T3Yb0EnADSXzo/n084QGVf5buC0A9elreAOSP2HqvZt+cDN93
+            VAgXPq9UOhjgY9t4EEVAHp7c2t5PCO/6VF4z6YAmXxxV6VT6HBhEMy6u4bn0JUBO
+            DLbD7EtbLVNc1kvfDupLPf7IZLa6YRwCa7omn0HVY/2difeoRqoIIl3QCr5Ea5dM
+            /a8+yVI3UKUUgBE8W7VIK7gTaTlz1uyyi1hL1q23Wei6jYi+rhkBM/LfdFqL5cv7
+            tQlfEuwRjl30/pgcqZI+ZQGJDpHiQ4EwOd3/GXFYH3XeSaNWIJrpAOfcxsjoJ9M6
+            TDsEb19pJvYbheOeTemqXlBxVjJrr4jWK6qgd2MrcT4BP5+4+6SnDXvW0nxK0sDZ
+            a+jIc1Q6jNcz9g5bUjvl77mAQGHDt+DZvbr9B17NS2bAbmlQ3K30p3HtKFhvdjtR
+            kC0u/BIVhoV36TGC9PUakSNNpLRQw30h8pOTLLBfj1UROO5zlN67a6sjupJkc4M=
+</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+    </KeyDescriptor>
+    <KeyDescriptor use="encryption">
+      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+        <ds:KeyName>uncsidiquip1</ds:KeyName>
+        <ds:X509Data>
+          <ds:X509SubjectName>CN=uncsidiquip1</ds:X509SubjectName>
+          <ds:X509Certificate>MIID6zCCAlOgAwIBAgIJAPuP1wvhzigRMA0GCSqGSIb3DQEBCwUAMBcxFTATBgNV
+            BAMTDHVuY3NpZGlxdWlwMTAeFw0xNzAzMjAxMjM0NTFaFw0yNzAzMTgxMjM0NTFa
+            MBcxFTATBgNVBAMTDHVuY3NpZGlxdWlwMTCCAaIwDQYJKoZIhvcNAQEBBQADggGP
+            ADCCAYoCggGBALE2zM2/VY2wlLTN1/mdmvqN26HZSYU7IlA9+i+om61wdjL+ZKFJ
+            xxp6ycvhMBwhitph9rBEeLi23KrrxEEmssxQbwhqLJuPCvMzyeaEakW8maswyiw7
+            Ee72taoY4L5qYhrcCvo/9g+UWGGz3FPrJthf0joF5KeWhRgW4k9SVrRAJMWz0OLT
+            X88R6yRgYDX0g+F1aNHwCLbFo+85+0h2CK5QkKwiB8XVrcaplEX9OmigfQFu5BGf
+            TcXd/Hm1p/9TEcvaxy9J6gyKN00BFReeRXoE8pG1AEyqRKEvqgufgGJVb+xJj88y
+            K/q6qoqUR4vZ3z3fGbhyXDFY0o9A9cidW+pWvhEh1P90dUdi7CPnOx6+97GsLJGZ
+            aGhojpwO+QAwYd9MW4IDetevYTK3iMsr0DWWrbvzS0dnvPUASFGuMWj+ISoSy+cA
+            K53/kZoTu+nHJ7BKLYcKZ4oeL0A3Kguqf4vRGxncGx6KpJCamqGB62uXsAqZ3m5w
+            q+OTXnHz4gEQ2QIDAQABozowODAXBgNVHREEEDAOggx1bmNzaWRpcXVpcDEwHQYD
+            VR0OBBYEFN3hdSMt60Cg00SCAKrr9kTNBuTaMA0GCSqGSIb3DQEBCwUAA4IBgQAH
+            qh8bLny1cJIqCp9T3Yb0EnADSXzo/n084QGVf5buC0A9elreAOSP2HqvZt+cDN93
+            VAgXPq9UOhjgY9t4EEVAHp7c2t5PCO/6VF4z6YAmXxxV6VT6HBhEMy6u4bn0JUBO
+            DLbD7EtbLVNc1kvfDupLPf7IZLa6YRwCa7omn0HVY/2difeoRqoIIl3QCr5Ea5dM
+            /a8+yVI3UKUUgBE8W7VIK7gTaTlz1uyyi1hL1q23Wei6jYi+rhkBM/LfdFqL5cv7
+            tQlfEuwRjl30/pgcqZI+ZQGJDpHiQ4EwOd3/GXFYH3XeSaNWIJrpAOfcxsjoJ9M6
+            TDsEb19pJvYbheOeTemqXlBxVjJrr4jWK6qgd2MrcT4BP5+4+6SnDXvW0nxK0sDZ
+            a+jIc1Q6jNcz9g5bUjvl77mAQGHDt+DZvbr9B17NS2bAbmlQ3K30p3HtKFhvdjtR
+            kC0u/BIVhoV36TGC9PUakSNNpLRQw30h8pOTLLBfj1UROO5zlN67a6sjupJkc4M=
+</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+      <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep" />
+      <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p" />
+    </KeyDescriptor>
+    <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP"
+      Location="https://iga.nebraska.edu/Shibboleth.sso/Artifact/SOAP" index="1" />
+    <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP"
+      Location="https://iga.nebraska.edu/Shibboleth.sso/SLO/SOAP" />
+    <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
+      Location="https://iga.nebraska.edu/Shibboleth.sso/SLO/Redirect" />
+    <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
+      Location="https://iga.nebraska.edu/Shibboleth.sso/SLO/POST" />
+    <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact"
+      Location="https://iga.nebraska.edu/Shibboleth.sso/SLO/Artifact" />
+    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
+      Location="https://iga.nebraska.edu/Shibboleth.sso/SAML2/POST" index="1" />
+    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign"
+      Location="https://iga.nebraska.edu/Shibboleth.sso/SAML2/POST-SimpleSign" index="2" />
+    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact"
+      Location="https://iga.nebraska.edu/Shibboleth.sso/SAML2/Artifact" index="3" />
+    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS"
+      Location="https://iga.nebraska.edu/Shibboleth.sso/SAML2/ECP" index="4" />
+    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post"
+      Location="https://iga.nebraska.edu/Shibboleth.sso/SAML/POST" index="5" />
+    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01"
+      Location="https://iga.nebraska.edu/Shibboleth.sso/SAML/Artifact" index="6" />
+  </SPSSODescriptor>
+  <Organization>
+    <OrganizationName xml:lang="en">SailPoint IGA</OrganizationName>
+    <OrganizationDisplayName xml:lang="en">SailPoint IGA</OrganizationDisplayName>
+    <OrganizationURL xml:lang="en">https://iga.nebraska.edu</OrganizationURL>
+</Organization>
+<ContactPerson contactType="technical">
+    <GivenName>Andy Costa</GivenName>
+    <EmailAddress>andrew.costa@nebraska.edu</EmailAddress>
+</ContactPerson>
+<ContactPerson contactType="administrative">
+    <GivenName>Ryan Rumbaugh</GivenName>
+    <EmailAddress>rrumbaugh@nebraska.edu</EmailAddress>
+</ContactPerson>
+<ContactPerson contactType="support">
+    <GivenName>ITS IAM Team</GivenName>
+    <EmailAddress>its-sec-iam@nebraska.edu</EmailAddress>
+</ContactPerson>
+<ContactPerson contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
+    <GivenName>ITS Security</GivenName>
+    <EmailAddress>security@nebraska.edu</EmailAddress>
+</ContactPerson>
+</EntityDescriptor>
 </EntitiesDescriptor>