Shibboleth 3.x & Multiple Sites on IIS Server
Peter Schober
peter.schober at univie.ac.at
Mon Feb 3 15:15:04 EST 2020
* Bhagwat, Shrikant <shrbhagw at med.umich.edu> [2020-02-03 21:05]:
> We looked in our case we don't need to use ApplicationOverride
> element. Both sites site1 & site2 are very much similar.
>
> I could not figure out how to add second site "site2.lan" in
> ApplicationDefault Element. Or is it not necessary.
Since AFAICT you state above that you "don't need to use
ApplicationOverride element" I think that question is moot?
> I am the IDP Admin as well as SP admin.
OK. I was simply assuming you'd be using UMich's central IDP.
> Also how do I get them separate entityID for each site id I need.
Of the sites are "very much similar" (as you said yourself. above) I
wouldn't give them separate entityIDs. Those are only useful if the
IDP must differentiate those SPs somehow, usually for differing
attribute release or other policies.
If you *know* you must use different entityIDs there's the
'entityIDself' content setting. For use within the RequestMap see:
https://wiki.shibboleth.net/confluence/display/SP3/RequestMap
-peter
More information about the users
mailing list