== [[https://iam.alaska.edu/shib|Shibboleth]] / Shibboleth IdP Setup == === IdP2Upgrade === [[https://wiki.shibboleth.net/confluence/display/SHIB2/IdP2Upgrade|Shibb documentation wiki, Added by lajoie@idp.protectnetwork.org, last edited by Sara Hopkins on Oct 03, 2012]] === Upgrading from Shibboleth IdP 2.x === These instructions are for upgrading a currently operational version 2.x Shibboleth IdP. 1. Stop the IdP (by stopping the Tomcat servlet container); stop Apache httpd too. 2. Make a back-up copy of /opt/shibboleth-idp/conf directory (recent versions of the IdP installer should not overwrite config unless you answer "yes" in point 7 below). 3. Download the .zip archive of the most recent Shibboleth IdP 2.x and unzip the archive. Do not use the .msi installer for upgrading an existing IdP 2.x installation. 4. Create a source directory specifically for storing the IdP unzipped archives. This makes it easier to manage any additional libraries or branding. Record the directory path here:_____________________________ 5. Copy additional libraries (e.g. JDBC drivers or plugins and/or filters, like uApprove) into the lib/ directory (i.e. lib/ inside the source directory where you unzipped the archive; not $IDP_HOME/lib/, which is inside the deployment directory). 6. Reapply any branding: ie. copy the previously customised login.jsp etc. pages into the /src/main/webapp subdirectory of the unzipped archive. 7. Run the install script from the command line in the top-level directory of the unzipped archive (install.sh on Unix machines, install.bat on Windows). * Provide the location of your $IDP_HOME directory: /opt/shiobboleth-idp * Answer "no" when the installer asks if you wish to overwrite your configuration files. 8. If the config files have been overwritten (eg. due to human error) copy the files from the back-up back into /opt/shibboleth-idp/conf directory. 9. Start the IdP (or the servlet container), and start Apache httpd too, if you're using it. === UA localization === 2012: IdP distribution is at howkan:/home/sxjpm/Shib/shibboleth-identityprovider-2.3.0/src... The java login page for branding & customization is in that src directory at .../main/webapp/login.jsp production !IdPs (heald, hanin) do not have 2.3.0 src... === IdP Install (not upgrade) Recipe === See https://iam.alaska.edu/trac/raw-attachment/wiki/WikiStart/idpinstall.pdf