Shibboleth configuration information is stored in a variety of locations. This guide treats configuration information by topic, grouping information from all configuration files. Conceptual explanations are given for instances where deployment-specific decisions must be made. The primary configuration locations are:
idp.xml-- primary Shibboleth configuration information;httpd.confandssl.conf-- SSL, authentication and port configuration; may be split into other files, depending on Apache installation;metadata.xml-- Trust lists for roots and sites for SSL, attribute release, signed assertions, and more; may be provided by a federation;resolver.xml-- Attribute sources, definitions, naming, and resolution;/conf/arps/-- directory containing attribute release policies;
Secondary configuration for other tasks may be encountered at:
workers2.propertiesorworkers.properties-- the URL's for the Shibboleth servlets and protection information;server.xml-- Tomcat settings, including ports, logging, etc.log4j.properties-- Logging and auditing configuration information if flat-file logging is not used.