/
IdPFilesConfig

The Shibboleth V1 software has reached its End of Life and is no longer supported. This documentation is available for historical purposes only.

IdPFilesConfig

Owned by Scott Cantor
Last updated: Dec 22, 2006Version comment

Shibboleth configuration information is stored in a variety of locations. This guide treats configuration information by topic, grouping information from all configuration files. Conceptual explanations are given for instances where deployment-specific decisions must be made. The primary configuration locations are:

  • idp.xml -- primary Shibboleth configuration information;
  • httpd.conf and ssl.conf -- SSL, authentication and port configuration; may be split into other files, depending on Apache installation;
  • metadata.xml -- Trust lists for roots and sites for SSL, attribute release, signed assertions, and more; may be provided by a federation;
  • resolver.xml -- Attribute sources, definitions, naming, and resolution;
  • /conf/arps/ -- directory containing attribute release policies;

Secondary configuration for other tasks may be encountered at:

  • workers2.properties or workers.properties -- the URL's for the Shibboleth servlets and protection information;
  • server.xml -- Tomcat settings, including ports, logging, etc.
  • log4j.properties -- Logging and auditing configuration information if flat-file logging is not used.