vhosts with SP, single entity id

Peter Schober peter.schober at univie.ac.at
Mon Mar 5 10:51:22 EST 2018

* William Eubank <william.eubank at uah.edu> [2018-03-05 16:42]:
> Thanks for the info.  This is indeed what I was trying before I
> posted to the list but something must be amiss.
> In my IDP I have(swapped host and vhost for real dns entries):
> <md:AssertionConsumerService
>   Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
>   Location="https://vhost.uah.edu/Shibboleth.sso/SAML2/POST" index="5"/>
> primary works, vhost does not.  IDP error:
> [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:410]
> - Profile Action PopulateBindingAndEndpointContexts: Unable to resolve
> outbound message endpoint for relying party
> 'https://host.ds.uah.edu/shibboleth': EndpointCriterion
> [type={urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService,
> Binding=urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST,
> Location=https://vhost.uah.edu/Shibboleth.sso/SAML2/POST, trusted=false]

Seems to me the endpoint you have above (index=5) is exactly what has
been requested. So maybe the IDP is not loading the above metadata.

More information about the users mailing list