Shibboleth documentation and HOWTOs: Difference between revisions
(Add Installing SP2.1 for Apache under Windows placeholder) |
(Inline intended audiance, fix shibbileth2.xml typo) |
||
| Line 1: | Line 1: | ||
==Deploying Shibboleth SPs in the University== | ==Deploying Shibboleth SPs in the University== | ||
This page provides information about deploying Shibboleth Service Providers (SPs) within the University, either just to protect sites with Raven or with a view to joining the UK federation and potentially letting in people from other institutions. This information is intended to support the deployment of [http://shibboleth.internet2.edu/shib-v2.0.html version 2.1 of Internet2's SP software] - other versions of this, and other software, should work but the Computing Service is limited as to the amount of support it can provide on these. Note that version 1.3 of Internet2's SP software reaches the end of its support life on 30th June, 2010. | |||
The definitive documentation for all this starts with the [https://spaces.internet2.edu/display/SHIB2/Home Internet2 Shib2 wiki] (in particular the [https://spaces.internet2.edu/display/SHIB2/Installation installation] and [https://spaces.internet2.edu/display/SHIB2/Configuration configuration] pages). Almost everything you might need will be here, but you may need to explore - try following any and all links that look even vaguely useful. | The definitive documentation for all this starts with the [https://spaces.internet2.edu/display/SHIB2/Home Internet2 Shib2 wiki] (in particular the [https://spaces.internet2.edu/display/SHIB2/Installation installation] and [https://spaces.internet2.edu/display/SHIB2/Configuration configuration] pages). Almost everything you might need will be here, but you may need to explore - try following any and all links that look even vaguely useful. | ||
For deploying an SP in the UK federation, see the [http://www.ukfederation.org.uk/ UK federation website], and in particular the 'Shibboleth 2' section of [http://www.ukfederation.org.uk/content/Documents/Registration Entity registration]. | For deploying an SP in the UK federation, see the [http://www.ukfederation.org.uk/ UK federation website], and in particular the 'Shibboleth 2' section of [http://www.ukfederation.org.uk/content/Documents/Registration Entity registration]. | ||
These documents are intended for the system administrator that will be installing and maintaining a Shibboleth service provider in the University of Cambridge. This may be a different person than the application developer who will actually be using the attributes which Shibboleth delivers. The following basic skills are expected of the reader, and are beyond the scope of what these documents attempts to cover: | |||
* familiarity with the local operating system, including how to install software (on some UNIX systems this may involve compiling packages from source code) | |||
* configuring the local web server (Apache, IIS, etc) | |||
* basic understanding of XML documents (but see [[Editing XML]] for some hints) | |||
In addition, a basic understanding of SSL, including how to generate a key and CSR, will be required for many deployment options. | |||
===Instructions=== | ===Instructions=== | ||
* [[Installing SP2.1 under Linux]] | * [[Installing SP2.1 under Linux]] | ||
| Line 30: | Line 35: | ||
* [['Ucam Federation' IdP metadata]] | * [['Ucam Federation' IdP metadata]] | ||
* [[ | * [[shibboleth2.xml - internal use skeleton]] | ||
* [[attribute-map.xml - internal use skeleton]] | * [[attribute-map.xml - internal use skeleton]] | ||
Revision as of 14:31, 26 March 2009
Deploying Shibboleth SPs in the University
This page provides information about deploying Shibboleth Service Providers (SPs) within the University, either just to protect sites with Raven or with a view to joining the UK federation and potentially letting in people from other institutions. This information is intended to support the deployment of version 2.1 of Internet2's SP software - other versions of this, and other software, should work but the Computing Service is limited as to the amount of support it can provide on these. Note that version 1.3 of Internet2's SP software reaches the end of its support life on 30th June, 2010.
The definitive documentation for all this starts with the Internet2 Shib2 wiki (in particular the installation and configuration pages). Almost everything you might need will be here, but you may need to explore - try following any and all links that look even vaguely useful.
For deploying an SP in the UK federation, see the UK federation website, and in particular the 'Shibboleth 2' section of Entity registration.
These documents are intended for the system administrator that will be installing and maintaining a Shibboleth service provider in the University of Cambridge. This may be a different person than the application developer who will actually be using the attributes which Shibboleth delivers. The following basic skills are expected of the reader, and are beyond the scope of what these documents attempts to cover:
- familiarity with the local operating system, including how to install software (on some UNIX systems this may involve compiling packages from source code)
- configuring the local web server (Apache, IIS, etc)
- basic understanding of XML documents (but see Editing XML for some hints)
In addition, a basic understanding of SSL, including how to generate a key and CSR, will be required for many deployment options.
Instructions
- Installing SP2.1 under Linux
- Installing SP2.1 under Windows
- Installing SP2.1 for Apache under Windows
- Installing SP2.1 under MacOS
Additional information
Resources
- 'Ucam Federation' IdP metadata
- shibboleth2.xml - internal use skeleton
- attribute-map.xml - internal use skeleton
Other University Shibboleth information
Shibboleth Implementation Project documents
These documents, originally working document belonging to the Computing Service's Shibboleth Development Project, are retained for historical and reference purposes.
