...
- Edit
httpd.conf:- Shibboleth includes configuration directives in the files
/opt/shibboleth-sp/etc/shibboleth/apache.config,/opt/shibboleth-sp/etc/shibboleth/apache2.config, and/opt/shibboleth-sp/etc/shibboleth/apache22.configwhich must beIncludedin thehttpd.conffile used locally. Be wary of placing the Include directive in the wrongVirtualHost.Code Block none none # Example for Apache 2.2.x Include /opt/shibboleth-sp/etc/shibboleth/apache22.config - The
UseCanonicalNamedirective should be set toOnor resource mapping errors will result. - Ensure that the
ServerNamedirective is properly set, and that Apache is being started with SSL enabled.
- Shibboleth includes configuration directives in the files
/opt/shibboleth-sp/sbin/shibdmust be independently started and run in order to handle access requests. In most cases, the build process ensures thatshibdcan locate the configuration file and schemas, but theSHIBCONFIGandSHIBSCHEMASenvironment variables may be used as well. Command line options can also be used to specify them.- Remember to set DYLD_INSERT_LIBRARIES to /opt/shibboleth-sp/lib/libshib-target.dylib:/opt/shibboleth-sp/lib/libshib.dylib and DYLD_LIBRARY_PATH to /opt/shibboleth-sp/lib at runtime.
- By default, the Shibboleth module is configured to log information on behalf of Apache to
/opt/shibboleth-sp/var/log/httpd/native.log, though this can be changed by modifying the.loggerfiles pointed to by the configuration. For this log to be created, Apache must have permission to write to this file, which may require that the file be manually created and permissions assigned to whatever user Apache is configured to run under. If the file does not appear when Apache runs with the modules loaded, check for permission problems or change the location used. shibdcreates its own separate logs at/opt/shibboleth-sp/var/log/shibboleth/shibd.logand must have appropriate write permissions itself as well.
...