Versions Compared

Old Version 11

changes.mady.by.user Andrew M Boardman

Saved on

compared with

New Version Current

changes.mady.by.user Andrew M Boardman

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Migration of unmigrated content due to installation of a new plugin

...

  1. Configure

...

  1. the

...

  1. system

...

  1. to

...

  1. use

...

  1. Apache

...

  1. 2.2.x,

...

  1. according

...

  1. to

...

  1. other

...

  1. pages

...

  1. on

...

  1. this

...

  1. wiki.

...

  2. Check

...

  1. that

...

  1. the

...

  1. install

...

  1. of

...

  1. OpenSSL

...

  1. has

...

  1. the

...

  1. development

...

  1. extensions.

...

  1. If

...

  1. the

...

  1. system

...

  1. received

...

  1. a

...

  1. custom

...

  1. build

...

  1. of

...

  1. OpenSSL,

...

  1. there

...

  1. will

...

  1. be

...

  1. a

...

  1. /usr/local/ssl

...

  1. directory,

...

  1. and

...

  1. this

...

  1. step

...

  1. can

...

  1. be

...

  1. skipped.

...

    1. Check

...

    1. the

...

    1. rpmlogs

...

    1. for

...

    1. openssl-devel.

...

    1. Install

...

    1. it

...

    1. if

...

    1. it

...

    1. is

...

    1. missing.

...

    1. Code Block

...

    1. 
grep openssl-devel /var/log/rpmpkgs
yum install openssl-devel

...

  2. Download the source code tarball and build script from either Trogdor or the /mit/webauth/shibboleth/source 
...
  1.  webauth 
...
  1.  Athena 
...
  1.  locker. 
...
    1. Download 
...
    1.  from 
...
    1.  Aether: 
...
    1.  Code Block
...
    1. 
cd /home/www/tmp
scp $troguser@trogdor.mit.edu:/opt/software-repository-tmp/Touchstone/shibboleth-sp-1.3.1-sources.tgz .

...
    2. Download for the webauth Athena locker: 
       Code Block
      
cd /home/www/tmp
scp athena.dialup.mit.edu:/mit/webauth/shibboleth/source/shibboleth-sp-1.3.1-sources.tgz .

...
  2. Make certain that the correct version of apxs from httpd-devel 
...
  1.  packages 
...
  1.  are 
...
  1.  installed. 
...
    • If 
...
    •  apxs 
...
    •  is 
...
    •  not 
...
    •  in 
...
    •  /home/www/apache/bin, 
...
    •  install 
...
    •  it 
...
    •  from 
...
    •  rpm: 
...
    •  Code Block
...
    • 
yum install httpd-devel

...
  2. Create a Shibboleth build directory, unpack the tarball into it, and run the build script. 
    • If Apache was built locally: 
       Code Block
      
mkdir /home/www/tmp/shibboleth-build-directory
cd /home/www/tmp/shibboleth-build-directory
tar -xzvf /home/www/tmp/shibboleth-sp-1.3.1-sources.tgz
./build-sp.sh -p /home/www/shibboleth -a /home/www/apache/bin/apxs
chown -R www:www /home/www

...
    • If Apache was installed from rpm: 
       Code Block
      
mkdir /home/www/tmp/shibboleth-build-directory
cd /home/www/tmp/shibboleth-build-directory
tar -xzvf /home/www/tmp/shibboleth-sp-1.3.1-sources.tgz
./build-sp.sh -p /home/www/shibboleth
chown -R www:www /home/www

...
  2. Configure Shibboleth, 
...
  1.  as 
...
  1.  described 
...
  1.  in 
...
  1. Configuring+and+customizing+the+Shibboleth+SP
...
  1. . 
...
    • Download 
...
    •  to 
...
    •  the 
...
    •  config 
...
    •  files 
...
    •  from 
...
    •  Trogdor 
...
    •  or 
...
    •  the 
...
    •  webauth 
...
    •  Athena 
...
    •  locker 
...
    •  and 
...
    •  run 
...
    •  the 
...
    •  gen-shib.sh 
...
    •  script: 
...
    •  Code Block
...
    • 
cd /home/www/shibboleth/etc/shibboleth
scp $troguser@trogdor:/opt/software-repository-tmp/Touchstone/config-SP/* .
chmod u+x /home/www/shibboleth/etc/shibboleth/gen-shib.sh
./gen-shib.sh

...
    • Edit the file /home/www/apache/conf/httpd.conf. 
...
    •  After 
...
    •  the 
...
    •  line 
...
    •  "Include 
...
    •  conf/extra/httpd-ssl.conf", 
...
    •  insert 
...
    •  the 
...
    •  following: 
...
    •  Code Block
...
    • 
# Touchstone/Shibboleth
Include /home/www/shibboleth/etc/shibboleth/apache22.config

...
  2. Add the init script to /etc/init.d, 
...
  1.  and 
...
  1.  set 
...
  1.  to 
...
  1.  run 
...
  1.  on 
...
  1.  appropriate 
...
  1.  runlevels. 
...
  1.  Code Block
...
  1. 
cd /home/www/shibboleth/etc/shibboleth
cp /home/www/shibboleth/etc/shibboleth/shibd-redhat /etc/init.d/shibd
chmod u+x,a-w /etc/init.d/shibd
cd /etc/init.d
ln -s /etc/init.d/shibd /etc/rc.d/rc3.d/S45shibd
ln -s /etc/init.d/shibd /etc/rc.d/rc4.d/S45shibd
ln -s /etc/init.d/shibd /etc/rc.d/rc5.d/S45shibd
ln -s /etc/init.d/shibd /etc/rc.d/rc3.d/K45shibd
ln -s /etc/init.d/shibd /etc/rc.d/rc4.d/K45shibd
ln -s /etc/init.d/shibd /etc/rc.d/rc5.d/K45shibd
/etc/init.d/shibd start

...
  2. At a convenient time, 
...
  1.  bounce 
...
  1.  Apache 
...
  1.  and 
...
  1.  related 
...
  1.  web 
...
  1.  services. 
...
  1.  Code Block
...
  1. 
/etc/init.d/web stop
/etc/init.d/web start

...
  2. Send email to the Touchstone support team (touchstone-support@mit.edu), 
...
  1.  asking 
...
  1.  for 
...
  1.  the 
...
  1.  system 
...
  1.  to 
...
  1.  be 
...
  1.  included 
...
  1.  in 
...
  1.  the 
...
  1.  Touchstone 
...
  1.  database. 
...
  1.  Information 
...
  1.  they 
...
  1.  need 
...
  1.  is 
...
  1.  hostname, 
...
  1.  CN 
...
  1.  name 
...
  1.  if 
...
  1.  different 
...
  1.  from 
...
  1.  hostname, 
...
  1.  technical 
...
  1.  support 
...
  1.  contact 
...
  1.  (using 
...
  1.  a 
...
  1.  list 
...
  1.  is 
...
  1.  preferred, 
...
  1.  for 
...
  1.  our 
...
  1.  group, 
...
  1.  map-support@mit.edu 
...
  1.  is 
...
  1.  normally 
...
  1.  used), 
...
  1.  the 
...
  1.  organization 
...
  1.  that 
...
  1.  owns 
...
  1.  the 
...
  1.  system, 
...
  1.  and 
...
  1.  a 
...
  1.  short 
...
  1.  description 
...
  1.  (one 
...
  1.  sentence) 
...
  1.  of 
...
  1.  what 
...
  1.  function 
...
  1.  this 
...
  1.  server 
...
  1.  will 
...
  1.  perform.