== [[/|Shibboleth]] / Setup T2/UAF Parking App SP == This document describes the process of installing and configuring the Shibboleth SP to support the T2 UAF Parking App. 1. Download the latest Shibboleth SP for IIS and the appropriate platform (32bit/64bit): [[br]]http://www.shibboleth.net/downloads/service-provider/latest/win32/ [[br]] http://www.shibboleth.net/downloads/service-provider/latest/win64/ 1. Install the Shibboleth SP using the defaults in the installer but noting the installation path. 1. Download the IdP metadata from the following URL and save into the etc directory in the Shibboleth SP installation path: [[br]] https://idp.alaska.edu/idp-metadata.xml 1. Open the idp-metadata.xml file and copy out the entityID of the IdP without the quotes: {{{ ... ... }}} 1. Open the shibboleth2.xml file in the etc directory of the Shibboleth SP installation and edit the ISAPI tag, !RequestMap tag, !ApplicationDefaults tag, SSO tag, and !MetadataProvider tag as follows and save the file. The site id comes from the value in the IIS control panel associated with the web site that is configure to work with the Shibboleth SP. The name and hostname should be the outwardly listening IIS interface that the web browser will be connecting to. The entityID in the !ApplicationDefaults tag should looks something like: https://thefullhostname/shibboleth . This should _not_ be the URL for the web server. The entityID in the SSO tag should be the entityID copied from the idp-metadata.xml file. The file name in the !MetadataProvider should point to the idp-metadata.xml file saved in the etc directory of the Shibboleth SP installation. It should not include any directory components, just the filename. {{{ ... ... ... ... SAML2 SAML1 ... ... }}} 1. Open the attribute-map.xml file in the etc directory of the Shibboleth SP installation. Add the following tag to the file and save it. {{{ ... ... }}} 1. Restart IIS and the shibd service. This step may require a reboot to finish the process on some installations. 1. Browse to the following URL and email the downloaded XML file to iam@alaska.edu. [[br]] https://thefullhostname/Shibboleth.sso/Metadata