Seitenhistorie
eduID.at installation guide for the Shibboleth IDP 4
| Info | ||
|---|---|---|
| ||
The following is an example of a complete set of instructions for the installation and basic configuration of a current Shibboleth 4.x IDP on Debian 10 ("Buster"), using Java 11 and Tomcat 9. (Alternatively Ubuntu 18.04 LTS can also be used without any changes to the steps described in this guide.) |
...
- Install and configure Java and Tomcat as webserver with TLS/SSL support, running Tomcat and the JVM as non-root user
- Install the Shibboleth IDP software and integrate it with Tomcat
- Load SAML Metadata using the eduID.at Metadata and eduID.at Metadata Verification Key
- For new eduID.at members: Send a copy of your IDP Metadata (by default in
/opt/shibboleth-idp/metadata/idp-metadata.xml) to the eduID.at Operations Team, ideally signed with your S/MIME or OpenPGP key.
- For new eduID.at members: Send a copy of your IDP Metadata (by default in
- Configuring authentication & attribute lookup is somewhat site-dependent
- Configure attribute release filters, including controlled, automated attribute release based on Service Categories
- Add support for pairwise-id ("service-specific pseudonyms") and subject-id
Upstream documentation
Until more steps/topics are covered in the instructions in this wiki please refer to the upstream documentation and engage with the community:
...
Überblick
Inhalte
Aufgabenbericht