Child pages
  • shibboleth2.xml
Skip to end of metadata
Go to start of metadata

 1. entityID Setting 

Edit /etc/shibboleth/shibboleth2.xml as follows.

Search and detect [ApplicationDefaults entityID]
    <ApplicationDefaults entityID=""
                                           ↑Hostname of the SP
                         REMOTE_USER="eppn persistent-id targeted-id">

2. IdP Setting

Search and detect [SSO entityID]
            <SSO entityID=""
                                    ↑Hostname of the IdP
                discoveryProtocol="SAMLDS" discoveryURL="">
                SAML2 SAML1

3. Metadata Setting 

Setup for metadata automatic download. 

Modify /etc/shibboleth/shibboleth2.xml as follows.

        <!-- Example of remotely supplied batch of signed metadata. -->
        <!-- -->
←Add comment end
        <MetadataProvider type="XML" uri=""
↑URL of IdP metadata
              backingFilePath="idp-example-asia-metadata.xml" reloadInterval="7200">
↑backup file name of IdP metadata
← Add comment start
            <MetadataFilter type="RequireValidUntil" maxValidityInterval="2419200 "/>
            <MetadataFilter type="Signature" certificate="fedsigner.pem"/>
        --> ← Add comment end
        <!-- --> ← Add comment start

Downloaded IdP metadata is stored as /var/cache/shibboleth/idp-metadata.xml


Shibboleth SP 2.x Documents

  Parent Page Next Page

  • No labels