SAML Federation hints for OpenAM and Mozy

If you want to use OpenAM as an IdP to federate with the Mozy enterprise application commercial offer, you’ll have to configure your IdP so that it sets the NameID assertion field value to the email address of your users.

Since OpenAM will usually requires write access to your user repository by default, to store NameID’s you may toggle to the transient NameID format to prevent this behaviour.

