Stack Overflow
Stack Overflow

Questions tagged [shibboleth]

A standards based, open source software package for web single sign-on across or within organizational boundaries.

The Shibboleth software implements widely used federated identity standards, principally OASIS' Security Assertion Markup Language (SAML), to provide a federated single sign-on and attribute exchange framework.

Shibboleth also provides extended privacy functionality allowing the browser user and their home site to control the attributes released to each application.

Using Shibboleth-enabled access simplifies management of identity and permissions for organizations supporting users and applications.

Shibboleth is developed in an open and participatory environment, is freely available, and is released under the Apache Software License.

559 questions
0
votes
1 answer

Why shibboleth IdP idp-metadata.xml recommends 8443 for SOAP?

After the install.sh of 2.4.0 Shibboleth Identity Server, the idp-metadata.xml file is created. Why is that? Is not enough secure to use the standard HTTPS/443 port?
toma
  • 31
  • 1
  • 4
0
votes
1 answer

What is the best way to get a SAML identity provider (idp) to release userid without current domain

I need my SAML IDP attributes to be independent of a domain name or authorize despite the domain name. My SAML IDP response is: Today999_@domain.com
amanda fouts
  • 347
  • 2
  • 10
0
votes
0 answers

How to use Shibboleth with an Application that uses Active Directory without mention of SAML support

In order to use Shibboleth as an identity provider or service provider for an application that uses AD, does that application have to support SAML or can it just support AD? Can I use Shibboleth with an application that uses Active Directory for…
amanda fouts
  • 347
  • 2
  • 10
0
votes
1 answer

Shibboleth SP: How to pass NameID in an http header?

My web app is secured by reverse proxy where shibboleth sp does its magic. I recieve a saml response where i have custom name id. How do I pass it in a custom header to my web app?
user1745356
  • 4,462
  • 7
  • 42
  • 70
0
votes
0 answers

Error while reading SAML Response from Shibboleth IdP in java

I am trying to write a service provider in java. I am using Shibboleth IdP. I am able to send request to the IdP and when I am trying to read the response I am getting the error : java.lang.IndexOutOfBoundsException: Index: 0 at…
Rohit Pandey
  • 119
  • 4
  • 15
0
votes
1 answer

Configure Shibboleth native Service Provider and Apache

I have a simple web application. I want to set Shibboleth native SP in front of my web app so that it issues/asserts SAML related things and forwards request to my web app. Is there a complete tutorial how to achieve that?
user1745356
  • 4,462
  • 7
  • 42
  • 70
0
votes
1 answer

can I do test shibboleth IdP and SP on localhost environment?

can I do test shibboleth IdP and SP on localhost environment? I have just one PC(Win7)
Jehyun Shim
  • 91
  • 2
  • 11
0
votes
1 answer

Shibboleth login issue

I have set the Shibboleth Identity Provider at server A with domain name idp.XXX.gr. Then I set a proxy with an embedded service provider at server B with domain name proxy.XXX.gr. proxy.XXX.gr and idp.XXX.gr works great together. The problem starts…
wannaKnowItAll
  • 340
  • 1
  • 4
  • 20
0
votes
1 answer

ADFS 2.0 claim rules for consuming SAML2 assertions

I am using ADFS 2.0 as a service provider and Shibboleth as an IDP which issues SAML2 attributes in the form of:
user2387324
  • 1
  • 2
0
votes
1 answer

Integration with Shibboleth using WIF

I need to support SSO using SAML 2.0 for my portal(SP-initiated SSO and SP-initiated SLO profiles). I have Shibboleth Server as IdP and now I need to create or use existing SP using C#. Is it possible to implement SP for integration with Shibboleth…
Frank59
  • 3,141
  • 4
  • 31
  • 53
0
votes
2 answers

rack-saml Assertion Consumer Service binding

I am using rack-saml as middleware with omniauth-shibboleth to allow my app to work as a Service Provider. I would like to know how to set the binding for an Assertion Consumer Service (ACS) url? Presently my ACS url binding is 'any'. However, I…
user2517182
  • 1,241
  • 3
  • 15
  • 37
0
votes
1 answer

Shibboleth Attribute Query SAML error: Inbound message issuer was not authenticated

idp-process.log ERROR [org.opensaml.ws.security.provider.MandatoryAuthenticatedMessageRule:37] - Inbound message issuer was not authenticated. shibd.log ERROR OpenSAML.SOAPClient [109]: SOAP client detected a SAML error:…
Christopher Guray
  • 223
  • 4
  • 14
0
votes
0 answers

Given an Assertion ID, what information Shibboleth can provide to me?

I have a question about Shibboleth: Given an Assertion ID, what information Shibboleth can provide to me? I need to create a web service to provide some information about the users activities for some security purposes. I need to have (based an…
Saeed
  • 61
  • 7
0
votes
1 answer

Shibboleth - Service Provider protect resource on different server

I have two servers - Server A and Server B, each with their own public IP address. Server A hosts my production web application: http://client1.mydomain.com http://client2.mydomain.com http://client3.mydomain.com Server B hosts my Shibboleth…
Adam Levitt
  • 10,316
  • 26
  • 84
  • 145
0
votes
1 answer

SAML Provider/Implementations Compatible?

I'm hoping someone can shed some light on this subject for me. I have two customers that want to integration with my software as a service (SaaS) application using SAML Single Sign-On. Customer A is using PingFederate as their Identity…
Adam Levitt
  • 10,316
  • 26
  • 84
  • 145
1 2 3
37 38