[prev in list] [next in list] [prev in thread] [next in thread]
List: shibboleth-users
Subject: Re: NativeSPAddIdP
From: Gary Gwin <ggwin () cafesoft ! com>
Date: 2014-09-24 22:21:13
Message-ID: 542343D9.3020306 () cafesoft ! com
[Download RAW message or body]
Thanks Scott -- I'm clear now. I found this site useful to easily create
a second test IdP:
https://openidp.feide.no/
After creating a test account, I added this <MetadataProvider> to
shibboleth2.xml:
<MetadataProvider type="XML"
uri="https://openidp.feide.no/simplesaml/saml2/idp/metadata.php"
backingFilePath="openidp.feide.no-idp-metadata.xml"
reloadInterval="180000" />
Uploaded my test Shibboleth SP metadata, restarted IIS, and viola!
Gary
On 9/24/2014 2:31 PM, Cantor, Scott wrote:
> On 9/24/14, 4:18 PM, "Gary Gwin" <ggwin@cafesoft.com> wrote:
>
>> I'm following instructions in NativeSPAddIdP to add a second TestShib
>> IdP instance to a basic Windows/IIS 7 Shibboleth SP test configuration.
>
> Supporting additional IdPs in general is done by adding metadata for them,
> and that's all. This is mentioned at the top of the page you're looking at.
>
> I don't know what "second TestShib IdP instance" means in this context.
>
>>
>> The default case works fine. The instructions suggest adding an
>> <Application> element like this:
>
> No, that would be a very, very unusual situation involving selectively
> altering an SP entityID based on the IdP, which is a really bad idea in
> general.
>
> -- Scott
>
--
Gary Gwin
Cafesoft
858.268.5100 x501
http://www.cafesoft.com
*****************************************************************
* *
* Cams is a web single sign-on software solution for Apache, *
* IIS, WebLogic, WebSphere, JBoss and Tomcat web servers. *
* *
*****************************************************************
--
To unsubscribe from this list send an email to users-unsubscribe@shibboleth.net
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic