[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[upki-fed:01106] Proxy配下でのSP構築に関して



$B3'MM(B

$B3t<02q>66$H?=$7$^$9!#(B

$B8=:_(BSP$B$N9=C[$r$7$F$*$j$^$9!#(B

NII$BMM$N%$%s%9%H!<%k%^%K%e%"%k$KB'$j@_Dj$,40N;$7!"%F%9%H%U%'%G%l!<%7%g%s(B $B$K$b;22C:Q$_$G$9!#(B

$B!&4D6-(B
OS:Redhat7.2
Shibboleth SP Version 2.6.0
$B"(4{$K(BSSL$B4D6-$G$"$k$?$a!">ZL@=q$O>&MQ$N$b$N$r;HMQ$7$F$$$^$9!#(B
$B"(%$%s%9%H!<%k$r9T$C$?%5!<%P$O(BProxy$B7PM3$G30It@\B3$7$^$9!#(B

$B$^$::G=i$K(Bshibd$B5/F0;~$K0J2<$N%(%i!<$,=PNO$5$l$^$7$?!#(B
----------------------------------------------------------------------
ERROR XMLTooling.ParserPool : fatal error on line 0, column 0, message: unable to connect socket for URL 'https://metadata.gakunin.nii.ac.jp/gakunin-test-metadata.xml'
----------------------------------------------------------------------
Proxy$B$,860x!)$+$H?dB,$7!">e5-%a%?%G!<%?(BXML$B$r(Bwget$B$G        <MetadataProvider type="XML"  
file="/var/cache/shibboleth/federation-metadata.xml"/>
$B$H$7!"8GDj%U%!%$%k$H$7$F%;%C%H$7$^$7$?!#(B

/secure$B$r%7%\%l%9BP>]%G%#%l%/%H%j$H$7!"%"%/%;%9$r9T$&$H(B
401 Unauthorized
$B$H$J$j!"K\MhI=<($5$l$k$O$:$N(BDS$B2hLL!J(BIDP$B$N0lMw$,=P$k2hLL!K$,I=<($5$l$^$;$s!#(B

/var/log/shibboleth/shibd.log, shibd_warn.log
/var/log/shibboleth-www/native.log, native_warn.log
$B$K$O(B[INFO]$B$O=PNO$5$l$^$9$,%(%i!<$O=PNO$5$l$F$$$^$;$s!#(B


$B$d$O$j(Bproxy$B$,860x$J$N$G$7$g$&$+!)(B
$B$I$J$?$+(Bproxy$BG[2<$G(BSP$B$N9=C[$r@.8y$5$l$?J}$O$$$i$C$7$c$$$^$9$G$7$g$&$+!)(B


$B!|(Bshibboleth2.xml$B$Nhttps://xxxx.xx.xx.xx/shibboleth-sp"
                         REMOTE_USER="eppn persistent-id targeted-id">
$B!!!!!!!!!!!'(B
<SessionInitiator type="Chaining" Location="/DS" isDefault="true" id="DS">
        <SessionInitiator type="SAML2" template="bindingTemplate.html"/>
        <SessionInitiator type="Shib1"/>
<SessionInitiator type="SAMLDS" URL="https://test-ds.gakunin.nii.ac.jp/WAYF"/>
    </SessionInitiator>
$B!!!!!!!!!!!'(B
<CredentialResolver type="File" key="cert/$B>&MQ$N(BKey$B%U%!%$%k(B" certificate="cert/$B>&MQ$N>ZL@=q(B"/>
$B!!"(>&MQ>ZL@=q$r(B/etc/shibboleth/cert/$BG[2<$K%3%T!<$7$F$$$^$9!#(B

$B!|(Bhttpd/conf.d/shib.conf$B$N>66(B $B@/?M(B
$BEl5~ETK-Eg6hElCSB^(B1-17-8$B!!(BNBF$BCSB^%7%F%#%S%k(B3F $B")(B170-0013
TEL$B!'(B03-5954-1151         FAX$B!'(B03-5954-1150
/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/

--
/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/
$B3t<02q>66(B $B@/?M(B
$BEl5~ETK-Eg6hElCSB^(B1-17-8$B!!(BNBF$BCSB^%7%F%#%S%k(B3F $B")(B170-0013
TEL$B!'(B03-5954-1151         FAX$B!'(B03-5954-1150
E-mail$B!'(xxxxxx@xxxxxxxxxx  URL$B!'(Bhttp://www.cmsc.co.jp/
/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/-/