Highest Voted 'shibboleth' Questions - Server Fault Stack Exchange

1

vote

1 answer

Only one Shibboleth SP on reverse proxy for different sites

I am wondering if it is possible to only have one Shibboleth Service Provider (SP) if you pass requests to all your sites through one reverse proxy (with SSL offloading, etc.). So, let's say I have the following sites at different…

reverse-proxy shibboleth

asked Dec 16 '15 at 13:06

alex

417
1
7
10

1

vote

0 answers

protect IIS site with Shibboleth SP on certain IP

I host a webserver and want customers to authenticate using their ADFS server. I cannot reach their server, they reach mine and theirs. This basically works. I now wonder if it's possible to setup Shibboleth SP in a manner I can bypass the…

iis shibboleth

asked Jun 22 '15 at 10:40

Bernhard Döbler

111
7

1

vote

1 answer

ADFS without domain

Is it possible to run a ADFS 2.0 without connecting the server to a domain? We are using Shibboleth as claims provider, so we actually don't need active directory here. We manage to setup the ADFS (with AdfsSetup.exe /quiet) and configure it without…

active-directory domain-controller sharepoint adfs shibboleth

asked Apr 17 '15 at 11:19

Igor Lankin

113
1
6

1

vote

0 answers

ShibRequestSetting REMOTE_ADDR setting and Apache RequestHeader

I have Apache/Shibboleth serving requests to a reverse proxy and directly to web clients. When a request comes through the proxy I extract the original IP address and attempt to send it to shibboleth. However, this does not appear to be working…

apache-2.2 shibboleth

asked Nov 17 '14 at 22:57

Argothian

33
7

1

vote

1 answer

Shibboleth does pass attribute to server variable in PHP

I am building a SAML based federated authentication mechanism in which the IdP is ADFS 2.0 and the SP is Shibboleth running on Linux. I am able to do the following: Attempt to access a protected page, which redirects me to the IdP login page. Log…

php shibboleth

asked Oct 28 '14 at 12:29

pete.k

21
1
2
4

1

vote

1 answer

Shibboleth - opensaml::FatalProfileException

I have configured and installed shibboleth Idp and sp on a Ubuntu machine locally. The Idp is configured with LDAP. I am trying to access the secure.html file which hosted in Apache and secured by shibboleth sp, So when I try to access the page it…

ubuntu ldap shibboleth

asked Oct 15 '14 at 14:58

Edison

11
1
3

1

vote

1 answer

Advantage Integrating Shibboleth With ADFS

Can someone explain what the advantage of integrating Shibboleth with Microsoft ADFS is? I have been researching both products and it seems like they have similar offerings. There are many articles about using both together, but I have not been…

adfs shibboleth

asked May 21 '14 at 13:48

user1279156

13
2

1

vote

1 answer

.htaccess AuthType not what I expected

I'm working on a new project at work in PhP, and have come across something I'm unfamiliar with/can't find any help with. In the .htaccess file for the directory I see AuthType UWNetID require valid-user I have only ever seen basic, and digest…

php .htaccess shibboleth

asked May 19 '14 at 23:17

Brian Allan West

113
2

1

vote

0 answers

Shibboleth Authentication to AD failed with error "file not found"

I am new to Shibboleth and try to configure authentication between ADFS and Shibboleth. The users are stored in AD. I've already connected ADFS and Shibboleth and able to see the login page, after submitting username and credentials I am getting an…

ldap authentication shibboleth

asked Jan 14 '14 at 17:02

Andrej

11
1

1

vote

1 answer

Is there a way to configure shibboleth on tomcat without having to use httpd apache?

I have working setup of shibboleth configured via httpd apache and then pass it on to tomcat. Now is it possible to get rid of httpd portion alone and have tomcat handle shibboleth authentication by way of using the shibboleth daemon.

tomcat httpd shibboleth

asked Oct 16 '13 at 06:10

bagavadhar

538
4
14

1

vote

1 answer

Logging X-Forwarded-For IP in Shibboleth's Audit Logs

This is a follow up from my earlier question on capturing the X-Forwarded-For IP address in across multiple proxies. Now, I'm looking to capture the Client's IP in the application's (Shibboleth's IdP) logs. The follow is: Client > Load Balancer >…

tomcat x-forwarded-for shibboleth

asked Jun 17 '13 at 15:03

KM.

1,746
2
18
31

1

vote

2 answers

Custom Web Form for Shibboleth login

I recently deployed a server and website that authenticates with my university's Shibboleth authentication system. Functionally, it works great. Aesthetically, there is much When you go to the login page, the login page is redirected to the…

authentication integrated-authentication shibboleth

asked Oct 10 '10 at 12:14

Brian

145
7

1

vote

0 answers

Wildfly Elytron container managed authentication with federated SAML2 IDP

I'm trying to set up container-managed authentication with Wildfly 24 and would like to use an existing (federated) Shibboleth IDP. I haven't found docs detailing that use case, so I opted for the proxy auth scenario, e.g. Apache + Shibboleth SP…

java jboss saml shibboleth wildfly

asked Sep 16 '21 at 11:17

fuero

9,413
1
35
40

1

vote

0 answers

Integrating GitHub Org with SAML shibboleth & post actions

I am at the beginner level of GitHub cloud administration and looking for answers to the below-listed questions after I enable SAML integration (Shibboleth) for my Github cloud Organisation. Before enabling IDP integration with shibboleth idp on…

single-sign-on github saml shibboleth

asked Mar 29 '21 at 05:16

rgh

11
3

0

votes

1 answer

shibd daemon 'timeout' on systemctl start

I have a server that uses the shibboleth2 shibd daemon to allow remote authentication to a database. The daemon reads a very large federation metadata file on starting/reloading (circa 34MB). This needs several minutes to process. Previously it…

linux ubuntu systemd systemctl shibboleth

asked Jul 25 '19 at 16:54

fred2

97
9

Questions tagged [shibboleth]