[EXTERNAL] Re: Metagen/megagen.sh

Ernie Kinsey Ernie.Kinsey at cpcc.edu
Tue Feb 6 07:02:43 EST 2018


It turns out that my question was badly phrased based on an unclear request.  The client actually was looking for something else that I was familiar with, but didn’t recognize it from the way they were talking about it.  Anyway, I appreciate the info and I’ll keep this handy in case they change their mind.


On 2/5/18, 4:13 PM, "Tom Scavo" <trscavo at gmail.com> wrote:

    Hi Ernest,

    On Mon, Feb 5, 2018 at 2:53 PM, Ernie Kinsey <Ernie.Kinsey at cpcc.edu> wrote:
    > I’m looking for something that would create a metadata dump from my Shib instance.  I keep seeing references to something called “/etc/shibboleth/metagen.sh”  Most of the discussion I’ve seen is for Ubuntu, but I’m running CentOS 7.  Does anyone know if this utility is available for CentOS, and if so, where I can get my hands on it?  Any assistance appreciated.

    Scott gave the official response but maybe you could describe your use
    case a bit more. I have a bunch of metadata tools...

    That said, I'll take a wild guess that you want to share your IdP
    metadata with SP partners that are not InCommon participants. If so,
    you should still point them to InCommon metadata as an authoritative

    For some SP partners, I'm sure that is too much to ask given that your
    IdP entity descriptor is buried inside a huge file with 1000s of IdPs
    (2655 IdPs to be exact). Still, you should be firm since you incur a
    technical debt every time you share your metadata out of band (via
    email, e.g.).

    This problem will mostly go away once your metadata is individually
    addressable via the MDQ protocol. In the meantime, there's really not
    much you can do, I'm afraid.

    For Consortium Member technical support, see https://wiki.shibboleth.net/confluence/x/coFAAg
    To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net


This e-mail, including any attachments, is intended only for the addressee's use and may contain confidential and proprietary information. If you are not the intended recipient, you are hereby notified that any retention, dissemination, reproduction, or use of the information contained in this e-mail is strictly prohibited. If you have received this e-mail by error, please delete it and immediately notify the sender. Thank you for your cooperation.

More information about the users mailing list