CAS Shib issues
John Mitchell
jpmitchell at alaska.edu
Fri Sep 16 19:53:26 BST 2011
Terry,
I have been able to make casshib work. Its a thorny thing to setup
and difficult to maintain but it does work. I would recommend you look
at simplesamlphp though as it bridges CAS to SAML with a Shibboleth
IdP without all the effort and configuration complexity. I can help
you with either if you like (although free help is always fairly slow,
so beware :-)).
On Fri, Sep 16, 2011 at 9:51 AM, Terry Soucy <terry.soucy at unb.ca> wrote:
> Heya,
>
> We just installed our first IdP (latest version) and SP (again, latest
> version in the yum repository) and are having some issues with the
> CASShib module. We are able to auth to the IdP without error with
> apache, but once we put CASShib into the mix, we get errors.
>
> The assertion is telling the IdP that the endpoint is
> https://myunbtest.its.unb.ca/casshib/shib/myunb/Shibboleth.sso/SAML2/POST,
> but the metadata says that the ACS is
> https://myunbtest.its.unb.ca/Shibboleth.sso/SAML2/POST. We tried
> modifying the handlerURL on the SP, but that doesn't update the metadata
> information. What are we missing?
>
> Terry
>
> --
> Terry Soucy, Systems Analyst Integrated Technology Services
> University of New Brunswick, Fredericton Campus http://www.unbf.ca/its
> Voice: 506.447.3018 Fax: 506.453.3590 E-mail: terry.soucy at unb.ca
> ** ITS is a scent-reduced workplace - www.unbf.ca/its/policies **
> --
> To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
>
--
John P. Mitchell <jpmitchell at alaska.edu>
907.450.8320
http://www.alaska.edu/oit/iam
"All mankind is divided into three classes: those that are immovable,
those that are movable, and those that move." - Benjamin Franklin
More information about the users
mailing list