wiki:IdPSetup

Version 5 (modified by dabantz@…, 12 years ago) (diff)

--

Shibboleth / Shibboleth IdP Setup

IdP2Upgrade

Shibb documentation wiki, Added by lajoie@idp.protectnetwork.org, last edited by Sara Hopkins on Oct 03, 2012

Upgrading from Shibboleth IdP 2.x

These instructions are for upgrading a currently operational version 2.x Shibboleth IdP.

  1. Stop your IdP (or stop the servlet container, eg. Tomcat), and stop Apache httpd too, if you're using it.
  2. Make a back-up copy of your $IDP_HOME/conf directory (recent versions of the IdP installer should not overwrite your config unless you answer "yes" in point 7 below).
  3. Download the .zip archive of the most recent Shibboleth IdP 2.x and unzip the archive. Do not use the .msi installer for upgrading an existing IdP 2.x installation.
  4. if you don't already have one, it's a good idea to create a source directory specifically for storing the IdP unzipped archives. This makes it easier to manage any additional libraries or branding you might have.
  5. Copy your additional libraries (e.g. JDBC drivers or plugins and/or filters, like uApprove) into the lib/ directory (i.e. lib/ inside the source directory where you unzipped the archive; not $IDP_HOME/lib/, which is inside the deployment directory).
  6. If using User Password authentication, reapply any branding you have made: ie. copy your customised login.jsp etc. pages into the /src/main/webapp subdirectory of the unzipped archive.
  7. Run the install script from the command line in the top-level directory of the unzipped archive (install.sh on Unix machines, install.bat on Windows).
  • Provide the location of your $IDP_HOME directory.
  • Answer "no" when the installer asks if you wish to overwrite your configuration files.
  1. If your config files have been overwritten (eg. due to human error) copy the files from your back-up back in to your $IDP_HOME/conf directory.
  2. Start your IdP (or the servlet container), and start Apache httpd too, if you're using it.

UA localization

2012: IdP distribution is at howkan:/home/sxjpm/Shib/shibboleth-identityprovider-2.3.0/src...

The java login page for branding & customization is in that src directory at .../main/webapp/login.jsp

production IdPs (heald, hanin) do not have 2.3.0 src...