Open Source identity authorization and management solution, providing Single Sign On (SSO)
Shibboleth is an identity solution for Single Sign On (SSO) authentication. It began as an Internet2 Middleware activity in 2000.
Questions tagged [shibboleth]
72 questions
0
votes
1 answer
Shibboleth + IIS and Pound Reverse Proxy
Having a bit of a problem getting Shibboleth (SSO) working with ADFS and Pound.
The main problem seems to be that:
The website address will be https://website.domain.com
Pound will then terminate the SSL and forward the traffic to the webserver on…
boburob
- 1,174
- 8
- 23
0
votes
2 answers
Shibboleth SP, IIS
I have a Shibboleth SP instance on Server 2008 R2 and everything is authenticating fine with the IdP.
I was testing protecting a single page and that is working fine by doing the following in the shibboleth2.xml file:
…
OrangeGrover
- 585
- 3
- 10
- 24
0
votes
1 answer
Shibboleth-Idp setup: Issue with the data-connectors in attribute-resolver.xml
I have setup the shibboleth-Idp as servelet in servelet container tomcat6. However, tomcat start the servelet fails to load. My data connectors are causing it.
The code I am using for connectors is as follows:
0
votes
2 answers
Enable Shibboleth for Single SSL Virtual host on server with many vhosts
We have a RHEL 5.5 server in production with a few NameBasedVirtual hosts listening on port 80.
We have also have two (possibly mis-configured) SSL virtual hosts which use different Sockets as required by the Apache & the SSL…
iainlbc
- 2,694
- 18
- 19
0
votes
1 answer
Setting up Shibboleth to secure part of a website
I've installed the Shibboleth module for apache on Ubuntu 10.04 using aptitude to install libapache2-mod-shib2 as per https://groups.google.com/group/shibboleth-users/browse_thread/thread/9fca3b2af04d5ca8?pli=1 and enabled the module (I have checked…
HorusKol
- 741
- 5
- 12
- 31
0
votes
0 answers
What's wrong with my Shibboleth PathRegex config
I'm using Shibboleth SP 3.2.3 on Windows Server 2019 with IIS. It has been in production for quite a long time and working fine. I noticed at some point that it was protecting a path that shouldn't be protected so I added a rule for it like…
Kevin Donn
- 179
- 1
- 4
0
votes
0 answers
Shibboleth SP single site to multiple site
I currently have Shib SP (v3) running to protect a website lets call it site1.example.com. Lets say example.com uses an IDP called example1_auth and it is up and running as expected. I have other websites on the same server, they are completely…
Drifter104
- 3,693
- 2
- 22
- 39
0
votes
1 answer
tomcat9 shibboleth+mod_jk authentication forbidden
I have a Spring Boot application running currently under Tomcat 8.5 that has a shibboleth-based SSO integrated. Shibboleth and tomcat are connected using apache2 mod_shib and mod_jk, using default Debian 9 packages.
I am now trying to upgrade the…
P.Péter
- 499
- 2
- 6
- 17
0
votes
0 answers
HTTP ERROR 403 You don't have authorization to view this page. (Apache 2.4/Shibboleth 3.1/Tomcat 7)
I'm setting up a new server running CentOS 7 with Apache 2.4/Shibboleth 3.1/Tomcat 7 and using proxy_ajp to connect apache to tomcat.
I'm getting 403 from the site running on it. I've searched for solution on the internet, and tried them all…
solotenk
- 1
- 1
0
votes
1 answer
Shibboleth in sub-path URL
I am trying to install a Shibboleth Service Provider behind a reverse proxy, that handles SSL offloading and redirects all /shibboleth/ URLs to the VM that hosts Shibboleth SP with Apache. Here are some URL examples:
site.domain.com > go to…
J.B.
- 305
- 7
- 22
0
votes
1 answer
issue with shibboleth SP in docker container behind proxy
I am trying to get a shibboleth set up working in a docker container behind a proxy.
Currently I am able to get redirected to the shibboleth idp page where I can enter my login details and shibboleth will authenticate me. It is failing with a 404…
jonathan
- 111
- 2
- 5
0
votes
1 answer
Apache "require valid-user" is valid across multiple auth types
Our Apache uses both mod_shib_24 (SAML-SP) and mod_auth_openidc (OIDC-RP), which both are connected to a Shibboleth IdP (acts as both SAML-IDP and OIDC-OP).
Furthermore we have 2 protected locations, one protected by SAML, the other one protected by…
brzler
- 1