Any Thoughts/Recommendations on Load Sharing and Failover?

Henry B. Hotz hotz at
Thu Aug 16 15:51:57 EDT 2012

There was a thread a week or two ago about redundant SPs and sharing/splitting shibd.  Sounded like it wouldn't accomplish much.  OTOH if a SP failover forces a trip back to the IDP, at least the user doesn't have to re-log-in?

OTOH it seems superficially like redundant/load balanced IDPs would work fairly well if they shared keys.  Given all the other things that would be shared (like configurations and hence vulnerabilities) I don't see that as much of a problem.

Any thoughts/recommendataions anyone has?
The opinions expressed in this message are mine,
not those of Caltech, JPL, NASA, or the US Government.
Henry.B.Hotz at, or hbhotz at

More information about the users mailing list