...
- Apache must be installed and your website have an SSL certificate installed and SSL enabled. To request a SSL certificate: https://it.cornell.edu/ssl/renew-or-request-ssl-certificate.
- Shibboleth doesn't support http access. If http access is supported on your site, define a redirect rule in Apache configuration that route http traffic to https.
- Make sure your server time is accurate.
- Your server has user shibd createdavailable.
Installation
Expand | ||
---|---|---|
| ||
Install using RPM: https://wiki.shibboleth.net/confluence/display/SP3/RPMInstall
|
...
Expand | ||
---|---|---|
| ||
Check if you have sp-signing-cert.pem and sp-encrypt-cert.pem in /etc/shibboleth directory. If they are not there, generate them. shib-keygen -n sp-signing -h yourServername -y 10 (your servername will be the CN of the certificate) shib-keygen -n sp-encrypt -h yourServername -y 10 |
Shibboleth Configuration Check
...