Shibboleth SP, IIS

Posted by OrangeGrover on Server Fault See other posts from Server Fault or by OrangeGrover
Published on 2012-09-27T23:20:23Z Indexed on 2012/09/29 9:39 UTC
Read the original article Hit count: 633

I have a Shibboleth SP instance on Server 2008 R2 and everything is authenticating fine with the IdP.

I was testing protecting a single page and that is working fine by doing the following in the shibboleth2.xml file:

<Host name="MyUrl.com">
     <Path name="page.jsp" authType="shibboleth" requireSession="true"/>
</Host>

When I go to https://MyUrl.com/page.jsp I get redirected to enter credentials, and then end up back on the page.jsp

Now I found out that I should be protecting the Document Root, but not the entire site.
Basically I need to be authenticated by Shibboleth, and once I am, then I'll get redirected back to the Document Root where a session is set with separate software, I get redirected to a different page and the Document Root will never be used again.

Any help is appreciated

© Server Fault or respective owner

Related posts about iis

Related posts about windows-server-2008-r2