users Digest, Vol 20, Issue 90

Cantor, Scott cantor.2 at
Thu Feb 28 15:12:25 EST 2013

On 2/28/13 2:58 PM, "Praveen Pinto" <praveen.pinto at> wrote:

>Hi Scott,
>Here is the part of log where it blacklists rsa 1.5 when it first comes
>Ubuntu 10.04 LTS, Shibboleth version 2.5.1

The issue is a configuraton issue on your end, probably due to carrying
over a very old config file from pre-2.4.

>2013-02-28 11:32:00 WARN Shibboleth.Config : deprecated/legacy
>SecurityPolicy configuration, consider externalizing with
>2013-02-28 11:32:00 DEBUG Shibboleth.SecurityPolicyProvider.XML : no
>resource uri/path/name supplied, will load inline configuration

That's it. You have an inline SecurityPolicy element from back in the old
days and you have nothing pointing to the policy file you're changing now.

Just replace the old element with a SecurityPolicyProvider element as in
the newer default files and you're done.

-- Scott

More information about the users mailing list