Help setting up shibboelth 2.5.4 sp with shared session db

Ewing, Bill BEwing at utsystem.edu
Wed Aug 26 09:16:41 EDT 2015 

I'm trying to setup a shared session db on my redhat linux shib 2.5.4 SP and am running into some issues. I'm using these config additions to the shibboleth2.xml file and wasn't sure of the placement so I put them after the <sessions lifetime> section.

<!-- The OutOfProcess section contains properties affecting the shibd daemon. -->
<OutOfProcess logger="shibd.logger">
    <Extensions>
        <Library path="odbc-store.so" fatal="true"/>
    </Extensions>
</OutOfProcess>

<!-- This set of components stores sessions and other persistent data in an ODBC database. -->
<StorageService type="ODBC" id="db" cleanupInterval="900" isolationLevel="REPEATABLE_READ">
    <ConnectionString>
    DRIVER=MySQL64;SERVER=myapp-db.ucsf.edu;USER=dbuser;PASSWORD=password;DATABASE=shibboleth
    </ConnectionString>
</StorageService>
<SessionCache type="StorageService" StorageService="db" cacheAssertions="false"
              cacheTimeout="3600" inprocTimeout="900" cleanupInterval="900"/>
<ReplayCache StorageService="db"/>
<ArtifactMap StorageService="db" artifactTTL="180"/>

The result is when running shibd check I get the following errors and am wondering what I may be missing or if changes need to be made for the version im running as this example was a few years old from https://wiki.library.ucsf.edu/display/IAM/Configure+Shib+SP+on+a+Load+Balancing+Cluster .

Shibd check error below.

[root at zapidpaw1 shibboleth]# /usr/sbin/shibd -t
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 39, column 37, message: no declaration found for element 'OutOfProcess'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 39, column 37, message: attribute 'logger' is not declared for element 'OutOfProcess'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 47, column 95, message: no declaration found for element 'StorageService'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 47, column 95, message: attribute 'type' is not declared for element 'StorageService'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 47, column 95, message: attribute 'id' is not declared for element 'StorageService'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 47, column 95, message: attribute 'cleanupInterval' is not declared for element 'StorageService'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 47, column 95, message: attribute 'isolationLevel' is not declared for element 'StorageService'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 53, column 78, message: no declaration found for element 'SessionCache'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 53, column 78, message: attribute 'type' is not declared for element 'SessionCache'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 53, column 78, message: attribute 'StorageService' is not declared for element 'SessionCache'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 53, column 78, message: attribute 'cacheAssertions' is not declared for element 'SessionCache'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 53, column 78, message: attribute 'cacheTimeout' is not declared for element 'SessionCache'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 53, column 78, message: attribute 'inprocTimeout' is not declared for element 'SessionCache'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 53, column 78, message: attribute 'cleanupInterval' is not declared for element 'SessionCache'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 54, column 35, message: no declaration found for element 'ReplayCache'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 54, column 35, message: attribute 'StorageService' is not declared for element 'ReplayCache'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 55, column 53, message: no declaration found for element 'ArtifactMap'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 55, column 53, message: attribute 'StorageService' is not declared for element 'ArtifactMap'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 55, column 53, message: attribute 'artifactTTL' is not declared for element 'ArtifactMap'
2015-08-25 16:23:08 ERROR XMLTooling.ParserPool : error on line 82, column 20, message: element 'OutOfProcess' is not allowed for content model '(SSO?,Logout?,NameIDMgmt?,(SessionInitiator|LogoutInitiator|AssertionConsumerService|ArtifactResolutionService|SingleLogoutService|ManageNameIDService|Handler))'
2015-08-25 16:23:08 ERROR Shibboleth.Config : error while loading resource (/etc/shibboleth/shibboleth2.xml): XML error(s) during parsing, check log for specifics
2015-08-25 16:23:08 FATAL Shibboleth.Config : caught exception while loading configuration: XML error(s) during parsing, check log for specifics

configuration is invalid, check console for specific problems
[root at zapidpaw1 shibboleth]#

Thanks for your assistance,
Bill



William Ewing, Senior Information Security Analyst
CISSP, MCSE, MCITP-EA, CCNA/CCDA
UT System - Office of Information Security & Compliance
210 West 6th Street
Austin, Texas 78701-3035
Phone: (512)499-4575
email: bewing at utsystem.edu<mailto:bewing at utsystem.edu>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20150826/95a9126e/attachment-0001.html>

More information about the users mailing list