Google Apps sso setup

David Gersic dgersic at niu.edu
Thu Sep 4 14:30:42 EDT 2014 

Your metadata configuration looks right to me, pretty much the same as what I have here (working).

Do you also have the RelyingParty definition:

<rp:RelyingParty id="google.com"
   provider="https://idp.niu.edu/idp/shibboleth"
   defaultSigningCredentialRef="IdPCredential">
  <rp:ProfileConfiguration xsi:type="saml:SAML2SSOProfile" encryptAssertions="never" encryptNameIds="never" />
</rp:RelyingParty>

in relying-party.xml ?



>>> On 9/4/2014 at 09:27 AM, Dave Perry <Dave.Perry at hull-college.ac.uk> wrote: 
> Well, this is being tested now and we get the error:
> No peer endpoint available to which to send SAML response
> 
> I've put the following metadata call in,
>         <MetadataProvider                id="google"
>                                                                 
> xsi:type="FilesystemMetadataProvider"
>                                                                 
> xmlns="urn:mace:shibboleth:2.0:metadata"
>                                                                 
> metadataFile="/opt/shibboleth-idp/metadata/google-metadata.xml" />
> 
> And google-metadata.xml has the following:
> <?xml version="1.0" encoding="utf-8"?>
> <EntityDescriptor entityID="google.com" 
> xmlns="urn:oasis:names:tc:SAML:2.0:metadata">
>                 <SPSSODescriptor 
> protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
>                                 
> <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</NameIDForm
>at>
> 
>                                 <AssertionConsumerService index="1" 
> Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
>                                 
> Location="https://www.google.com/a/hull-college.ac.uk/acs" />
>                 </SPSSODescriptor>
> </EntityDescriptor>
> 
> As per one of the guides previously linked to. Can anyone who's got it going 
> check if I'm missing something please?
> 
> Thanks
> _________________________________________________
> Dave Perry
> eLearning Technologist, Hull College Group
> 
> Room L34 - Queens Gardens Library
> Wilberforce Drive, Queen's Gardens, Hull, HU1 3DG
> Extension 2230 / Direct Dial 01482 381930
> 
> * Need a fast reply? Try 
> elearning at hull-college.ac.uk<mailto:elearning at hull-college.ac.uk> *
> 
> 
> **********************************************************************
> This message is sent in confidence for the addressee
> only. It may  contain confidential or sensitive
> information.  The contents are not to be disclosed
> to anyone other than the addressee.  Unauthorised
> recipients are requested to preserve this
> confidentiality and to advise us of any errors in
> transmission.  Any views expressed in this message
> are solely the views of the individual and do not
> represent the views of the College.  Nothing in this
> message should be construed as creating a contract.
> 
> Hull College owns the email infrastructure, including the contents.
> 
> Hull College is committed to sustainability, please reflect before printing 
> this email.
> **********************************************************************
> 
> TEXT

More information about the users mailing list