Shibboleth NativeSP on FreeBSD 10.0

Dan Turner dan.turner at
Thu May 15 06:40:40 EDT 2014


I think I've solved this (well, it now works for me at least).

The issue seemed to stem from the fact that I've previously been
testing with an earlier version (and whole install) of the Shibboleth
SP. This had entirely different certs, but shared the same hostname
(and entity ID) of the newer Shibboleth SP.

I suspect the IdP was sending attributes encrypted for the now-defunct
SP, and changing my entity Id and ServerName in apache22's config
allowed the Metadata to change and thus the IdP was free to release
attributes encrypted for the current SP install.

Many thanks for your assistance in this issue,


Dan Turner

More information about the users mailing list