...
| Expand |
|---|
|
Property | Used During | Description |
|---|
idp.target.dirAll Operations | Where the installation is. In non-initial installs this defaults to a location derived from the the file used to invoked the installer.
Equivalent to (and overwriiten by) the -t qualifier | idp.entityID | Installation | The EntityID being created at install time | idp.host.nameInstallation | The (DNS) host name of the IdP being created. This is used to generate metadata and also in certificate generation | idp.scopeInstallation | The scope to assert | idp.keysizeInstallation | The size of keys to generate (the default is currently 3072, but may change in future release) | idp.keystore.passwordInstallation | The password to use when the trust PKCS12 keystore (backchannel) file is created. | idp.sealer.passwordInstallation | The password to use when the sealer PKCS12 keystore (cookie encryption) file is created. | idp.LDAP.credential | The LDAP Password (usually associated with a username in ldap.properties). | idp.conf.credentials.filemode | Installation
Unix UNIX Only Mode to set on credential files after installation (via chmod). The default value is currently 660 | idp.conf.credentials.group | Installation
Unix UNIX Only The group to set on the contents of the "credentials" directory (via chgrp). If not specified none is set. |
|
| Expand |
|---|
|
PropertyUsed during | Description |
|---|
ldap.merge.properties Installation | The name a property file to "merge" with the shipped ldap.properties file.
Values in the merge file override values in the shipped file. | idp.merge.propertiesInstallation | The name of a property file to "merge" with the shipped idp.properties file.
Values in the merge file override values in the shipped file. | idp.confsealer.preoverlayInstallationalias | The name of a directory used to pre-populate the conf file.
Files in the conf tree of the distribution will not overwrite these files. | idp.initial.edit-webapp | Installation | The name of a directory used to populate edit-webapp during first installation.
If present the distributed edit-webapp is ignored. | idp.src.dir | Installation | Where to install from (the distribution) | idp.sealer.alias | Installation | The sealer alias to usesealer alias to use | idp.sealer.keysize
| The keysize for the sealer .
| idp.noprompt | All | If set to true then an installation will fail rather than prompt for a missing property.
Equivalent to (and overwritten by) the --noPrompt command line option | idp.property.fileAll | If provided this property file can be used to as the source of all the properties listed on this page.
This can save constructing long command lines.
Equivalent to (and overwritten by) the --propertyFile command line option
Note that the settings overwrite all other settings from the command line | idp.conf.setmode | All | Set to false to turn OFF the setting of modes after an installation or upgrade. Mode setting includes (but may not be limited to)
| idp.no.tidyInstallation | For debug purposes, setting this to true will stop intermediate files (such as the idp.property.file) from being deleted after the installation | idp.initial.modules | Which modules to enable on initial install. |
|
| Expand |
|---|
|
Property | Used during | Description |
|---|
ldap.merge.properties | Installation | The name a property file to "merge" with the shipped ldap.properties file.
Values in the merge file override values in the shipped file. |
idp.merge.properties | Installation | The name of a property file to "merge" with the shipped idp.properties file.
Values in the merge file override values in the shipped file. |
| idp.src.dir idp.conf.preoverlay idp.initial.edit-webapp
Property | Used during | Description |
|---|
idp.src.dir | Installation | Where to install from (the distribution) | idp.conf.preoverlay | Installation | The name of a directory used to pre-populate the conf file.
Files in the conf tree of the distribution will not overwrite these files. | idp.initial.edit-webapp | Installation | The name of a directory used to populate edit-webapp during first installation.
If present the distributed edit-webapp is ignored. | idp.src.dir | Installation | Where to install from (the distribution) | idp.sealer.alias | Installation | The sealer alias to use | idp.noprompt | All | If set to true then an installation will fail rather than prompt for a missing property. | idp.property.file | All | If provided this property file can be used to as the source of all the properties listed on this page.
This can save constructing long command lines. | idp.conf.setmode | All | Set to false to turn OFF the setting of modes after an installation or upgrade. Mode setting includes (but may not be limited to)
Setting the 'bin' folder contents to Read+Execute Setting the 'system' folder (if present) to Read Setting the 'dist' folder to Read
| idp.initial.modules | Installation | A comma separated list of modules to enable during initial install. If this list is prepended with a '+' then the list is added to the default list (currently idp.authn.Password,idp.intercept.Consent,idp.admin.Hello) | idp.no.tidy | Installation | For debug purposes, setting this to true will stop intermediate files (such as the idp.property.file) from being deleted after the installation |
|
Examples
Setting generated key size on non-Windows system
...
Examples
In all the examples below the command line will be
| Code Block |
|---|
./bin/install.sh -Didp.keysize=2048 |
...
for Unix and
| Code Block |
|---|
|
.\/bin\/install.bat -Didp.keysize=2048 |
Setting installation directory on Windows systems
| Code Block |
|---|
.\bin\build.bat -Didp.target.dir="C:\Program Files (x86)\Shibboleth\IdP" |
...
for Windows
Property file setting generated key size and enabling two additional modules during installation
| Code Block |
|---|
|
installidp.bat -Didpkeysize=2048
idp.initial.modules=+idp.intercept.Impersonate,idp.authn.MFA |