shibboleth: tomcat failing to start IdP listener

Posted by HorusKol on Server Fault See other posts from Server Fault or by HorusKol
Published on 2011-01-10T01:17:30Z Indexed on 2011/01/10 1:55 UTC
Read the original article Hit count: 348

Filed under:
|
|

I have installed a Shibboleth Identity Provider as per http://www.edugate.ie/workshop-guides/shibboleth-2-identity-provider-installation-linux-debian-or-ubuntu

However, testing only gave me a 404 from Tomcat, and when I checked the Tomcat logs, I saw that the IdP listener was not starting:

10/01/2011 11:25:31 AM org.apache.catalina.startup.HostConfig deployDescriptor
INFO: Deploying configuration descriptor idp.xml
10/01/2011 11:25:32 AM org.apache.catalina.core.StandardContext start
SEVERE: Error listenerStart
10/01/2011 11:25:32 AM org.apache.catalina.core.StandardContext start
SEVERE: Context [/idp] startup failed due to previous errors

The IdP descriptor file has the following context:

<Context docBase="/opt/shibboleth-idp/war/idp.war" privileged="true" antiResourceLocking="false" antiJARLocking="false" unpackWAR="true" />

I have confirmed that the WAR file is located as the Context above specifies - as I have found similar issues from other people where the WAR file was not found. However, the logs posted by those people indicate that the descriptor file was correctly read by Tomcat and their problem was with the WAR file itself.

I'm assuming this is some kind of syntax error with the idp.xml, but cannot determine what it might be.

Also - setting the Tomcat logging level to FINEST does not provide any additional information in the logs for this error.

© Server Fault or respective owner

Related posts about security

Related posts about tomcat