There are no Tomcat packages available anymore for RHEL8 / CentOS 8. Nor for Jetty. That's even worse than the situation for CentOS 7 which at least had a Tomcat 7.0.x package available, but Tomcat 7 is no longer usable with current IDP versions, cf. system requirements.

Why this wiki currently provides no instructions for RHEL/CentOS

While one could forgo RPM/YUM completely and download/unpack software outside of any package management and subscribe to Tomcat/Jetty announce mailing lists in order to learn about important bugs and security advisories and implement tooling and processes to make updating Tomcat/Jetty reliable and painless so you can do it every time an important bug needs patching... it doesn't make much sense to use an "enterprise" GNU/Linux distribution and then run manually installed, unsupported server software on that, for which no security notfications and no automatic updates are available – especially for the only server process on a machine that also happens to be a security-relevant service handling passwords and Single Sign-On!

As such we do not encourage use of RHEL 8 / CentOS 8 as basis for a production Shibboleth IDP service: Either the ACOnet Team or the deployer would have to become responsible for developing all system integration, maintenance and security update processes (outside of and in addition to those for the Operating System + the Java Virtual Machine), which are core features provided by other GNU/Linux distributions such as Debian.

RHEL plus JWS subscriptions

RedHat/IBM does offer Tomcat 9 packages for RHEL subscribers, but apparently only for subscribers of the additional "Red Hat JBoss Web Server" (v5.x) product.

  • No labels