ECP AuthNFailed Problem

Cantor, Scott cantor.2 at
Tue Nov 11 20:43:53 EST 2014

On 11/12/14, 1:17 AM, "Abie" <abie0416 at> wrote:

>I am new to Shibboleth and struggling with getting ECP work. 
>I am using Shibboleth 2.4.2 and I successfully use it to SSO to my SP
>through web browser but encountered an AuthFailed problem when posting to
>idp/profile/SAML2/SOAP/ECP using simple Python ECP client (by Scott K.). 

Did you configure container authentication and protect that endpoint? If 
not, then it's not going to work.

>I have followed the wiki idPEnableECP and setup the realm in tomcat

You may have tried, but no, you didn't. If you need help with Tomcat 
authentication, they have their own list.

Assuming you're using basic-auth, just point your browser at the ECP 
endpoint. If you don't get prompted, you don't have it working. Until you 
do, this is not a Shibboleth question and you need to go look at Tomcat's 
docs or their list.

-- Scott

More information about the users mailing list