...
- Edit Apache configuration:
Shibboleth includes sample Apache configuration files in
etc/shibboleth
for each version of Apache. On newer OS X versions, one method is to copy the appropriate file to/private/etc/apache2/other/shib.conf
and make whatever adjustments you like. Alternatively, you can add anInclude
tohttpd.conf
itself, but this isn't advisable because that file will be overwritten on subsequent installs/upgrades. Use it as a sample to add the necessary commands to your own configuration.- Ensure that the
ServerName
directive is properly set, and that Apache is being started with SSL enabled. - The Use of theĀ
<RequestMap>
feature is not recommended for use with Apache, but its use requires that theĀUseCanonicalName
directive should be set toOn
for secure operation.
- Restart Apache.
/opt/shibboleth-sp/sbin/shibd
must be independently started and run in order to handle access requests. The daemon should in the future be loaded and monitored along with all other major services. A launchd file is included inetc/shibboleth/shibd.osx.plist
Code Block none none /opt/shibboleth-sp/sbin/shibd
By default, the Shibboleth module is configured to log information on behalf of Apache to
/opt/shibboleth-sp/var/log/httpdshibboleth-www/native.log
shibd
creates its own separate logs in/opt/shibboleth-sp/var/log/shibboleth
...