Help setting up shibboelth 2.5.4 sp with shared session db

[Ewing, Bill]

This is an atypical setup for us for a development peoplesoft environement that has 3 nodes a portal/HR/Fin node that we want to share a shib session. There are multiple entry points one from each of the nodes so we want to let them bounce btw each in that environment but then if they goto a different environment say test or sandbox we would want them to be forced to re-auth and create a new session for that environment. 

Thanks,
Bill

-----Original Message-----
From: users [mailto:users-bounces at shibboleth.net] On Behalf Of Cantor, Scott
Sent: Wednesday, August 26, 2015 9:29 AM
To: Shib Users <users at shibboleth.net>
Subject: Re: Help setting up shibboelth 2.5.4 sp with shared session db

On 8/26/15, 10:19 AM, "users on behalf of Ewing, Bill" <users-bounces at shibboleth.net on behalf of BEwing at utsystem.edu> wrote:
>
>Thanks for the reply. I found the example file right after I posted the email and got the needed components and placement I needed. I'm now getting a loadable config w/ the shibd check. As far as the bugs in the odbc drivers "I believe we are using Oracles" would the session sharing via using the shibd service on one node or a separate box be a safer option?

Safer, but much slower under load and requires a secure network connecting them. How have you managed to cluster the application to begin with, and if you managed that, why would you need the SP session?

There really is almost never a case where it's useful to try to cluster this unless the application has no state itself.

Memcache is probably the safest option that offers decent performance.

-- Scott

-- 
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net