Shibboleth SP, IIS
Posted
by
OrangeGrover
on Server Fault
See other posts from Server Fault
or by OrangeGrover
Published on 2012-09-27T23:20:23Z
Indexed on
2012/09/29
9:39 UTC
Read the original article
Hit count: 633
I have a Shibboleth SP instance on Server 2008 R2 and everything is authenticating fine with the IdP.
I was testing protecting a single page and that is working fine by doing the following in the shibboleth2.xml file:
<Host name="MyUrl.com">
<Path name="page.jsp" authType="shibboleth" requireSession="true"/>
</Host>
When I go to https://MyUrl.com/page.jsp I get redirected to enter credentials, and then end up back on the page.jsp
Now I found out that I should be protecting the Document Root, but not the entire site.
Basically I need to be authenticated by Shibboleth, and once I am, then I'll get redirected back to the Document Root where a session is set with separate software, I get redirected to a different page and the Document Root will never be used again.
Any help is appreciated
© Server Fault or respective owner