Stack Overflow
Stack Overflow

Questions tagged [shibboleth-sp]

41 questions
0
votes
0 answers

Installing Shibboleth on Windows server quits with USERS is not a valid user or group

I was installing Shibboleth Service Provider on a server and it did not work. In the Windows event log, I got the error Product: Shibboleth Service Provider -- Error 1609. An error occurred while applying security settings. USERS is not a valid…
Bernhard Döbler
  • 1,960
  • 2
  • 25
  • 39
0
votes
0 answers

Cannot access the value of a specific custom field of the HttpRequest header, named "serialNumber"

We are developing a .NET 7.0 web app, running on IIS 7. Our users will be authenticated remotely so we have Shibboleth-sp 3.4 installed to communicate with the appropriate IdPs. The IdPs send the authenticated user's info as a number of custom…
downernn
  • 176
  • 5
0
votes
0 answers

How to access Shibboleth Header and CGI variable with IIS and in Windows 2008 R2

How can I access shibboleth attributes to login to application or create user base on attributes? The application is running on Coldfusion 10 in Windows 2008 R2 server with 64bit Operating System. Shibboleth Service provider(SP) 3.4 is installed and…
Ismail Hossain
  • 1
  • 1
0
votes
1 answer

Can't decode saml message from shibboleth SP - invalid byte 1 of 1-byte UTF-8 sequence - java

In some installations we have a Service Provider Shibboleth Sp v3 and a Shibbleth idp V4 and all works fine. For some reasons in an other environments we have to rely on a customized idp that we are writing in java (a sort of proxy between different…
iljkr
  • 161
  • 1
  • 1
  • 8
0
votes
1 answer

Where does the SAML NotOnOrAfter Condition Originate?

I have a client where the NotOnOrAfter condition in the SAML response is always 5 minutes after login. The IdP is Okta and the SP is Shibboleth SP 3. I am not seeing anything on the Shibboleth side that adds this condition. I'm being told Okta…
Ryan
  • 557
  • 10
  • 18
0
votes
1 answer

Shibboleth variables not coming over with Coldfusion 2021 & IIS

I am trying to use Shibboleth 3 as the sp and azure AD as the ipd and I can see that I have successfully implemented based on the Shibboleth transaction log. 2022-12-16…
gabriel
  • 326
  • 1
  • 2
  • 12
0
votes
0 answers

Shibboleth IDP4 - How to define groups of Service Provider in same SSO context

I'm deploying a shibboleth v4 idp for SSO to protected network resources with Shibboleth SPs (Service Providers). I want to define simple rules like that: SP group one: SP-A and SP-B must be in the same SSO context (no re-authenticaton requeired…
iljkr
  • 161
  • 1
  • 1
  • 8
0
votes
1 answer

How can configure shib.conf when using both SAML sso and password login

Already I installed and configured shibboleth in our server for sso login. Whenever I hit any page in my website, it will redirect to my IDP for authentication. Now I need to implement password login for some external user in the same site without…
Srini
  • 1
0
votes
1 answer

Send login_hint parameter from Shibboleth (Service provider) to Azure AD (Identity Provider)

We installed Shibboleth SP3 on our IIS instance, it works pretty well to have a SSO authentication. However, we want to pass a « login_hint » parameter to Azure (our IdP) to ease people with multiple accounts. This way, the login is already set if…
Pierre Soundirarassou
  • 1
  • 1
0
votes
0 answers

redirect after shib login coldfusion

I need to do the following steps: 1 - authenticate through shibboleth on local coldfusion server 2 - create security token on local coldfusion server 3 - redirect to external site passing along the security token. Can I perform the redirect through…
Porkman
  • 1
0
votes
1 answer

How does a Shibboleth SP configure IdP metadata files without any downtime in the Shibboleth service?

I am curious how Service Providers of Shibboleth avoid downtime in their Shibboleth Service when installing/updating Metadata files within their configuration. I have seen a few websites offer the functionality for users to upload their own Metadata…
Carravaccio
  • 199
  • 2
  • 13
0
votes
1 answer

Apache 2.4 start/stop throws "undefined symbol: ber_sockbuf_io_udp" error after configuring it with Shibboleth SP 3.2.0

Operating System: Red Hat Enterprise Linux Server 7.9 (Maipo) Apache version: Apache/2.4.46 (Unix) Shibboleth version: 3.2.0 Error when trying to stop Apache (apachectl stop): httpd: Syntax error on line 528 of /conf/httpd.conf: Syntax error…
Zeek
  • 1
  • 2
0
votes
1 answer

opensaml::BindingException when logging out of a Shibboleth Service Provider with Azure ActiveDirectory as IdP

When users click logout, I'm redirecting them to "/Shibboleth.sso/Logout" This successfully brings them to the Microsoft logout page, then they get redirected back to the SP. However, as they return to the SP they get a SOAP error…
TeamDman
  • 649
  • 6
  • 26
0
votes
0 answers

Intermittent Cannot connect to shibd process, a site adminstrator should be notified

We have a shibboleth native SP 2.5.4 that's been running for a few years without any issues. Yesterday I had to update a certificate for one of the IDP. Since that restart I've been getting intermittent errors: Cannot connect to shibd process, a…
scharette
  • 605
  • 1
  • 9
  • 25
0
votes
1 answer

How to setup 2 identical Shibboleth SP on 2 redundant servers

For availability purpose, I have a redundant setup with 2 fronts and 2 backs. Each front hosts a web server, serving the same pages. Each front runs a instance of Shibboleth SP, redirecting to the same IdP. Both fronts are behind a load balancer…
Joel
  • 669
  • 7
  • 25
1
2
3