Not really a CAS issue. It needs the IDP metadata. All that is covered in Shibboleth documentation on IDP setup.
Mearl Danner Senior Systems Programmer Technology Services 205-726-2135 | office 205-726-2524 | fax [email protected] www.samford.edu 800 Lakeshore Drive, Birmingham, AL 35229 -----Original Message----- From: Gianluigi [mailto:[email protected]] Sent: Monday, November 25, 2013 5:18 AM To: [email protected] Subject: [cas-user] CAS 3.5.2 + Shibboleth configuration Hi all, I have a question about the configuration of Shibboleth + CAS. I have my Jasig CAS Server v. 3.5.2 on CentOS 5. I followed this tutorial to configure Shibboleth to use my CAS server. https://wiki.jasig.org/display/CASUM/Shibboleth-CAS+Integration First solution: 'Designate CAS the Authentication Provider for Shib IDP' I followed this steps: 1. I installed Shibboleth v. on my machine. 2. As described in the first point of the tutorial I Included CAS Client Libraries in IDP Deployable; 3. I added this xml block into my $SHIB_HOME/conf/handler.xml <!-- Remote User handler for CAS support --> <ph:LoginHandler xsi:type="ph:RemoteUser"> <ph:AuthenticationMethod> urn:oasis:names:tc:SAML:2.0:ac:classes:unspecified </ph:AuthenticationMethod> <ph:AuthenticationMethod> urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport </ph:AuthenticationMethod> </ph:LoginHandler> (I added the 'ph' suffix unlike as described in the tutorial) 4. After the deploy I modified the IDP Deployable web.xml as described in the tutorial. 5. To test I restarted the Tomcat servlet container and I verified that CAS authentication is used. I used the TestShib Service Provider but I have this error: opensaml::saml2md::MetadataException TestShib encountered some sort of error while processing your request issued at Mon Nov 25 06:08:04 2013. You may find more descriptive, helpful error messages in the TestShib SP logs. If you'd like to see the error, you can look at the last lines of . If the error is "Unable to locate metadata for identity provider", please make sure you've uploaded metadata for your IdP to TestShib. If you have, ensure that your metadata is correct and that your entityID as entered on the form is right. If you encountered a different kind of error, please go to the common errors section of the Wiki first. If you still can't figure out why this error is occurring, please search the archives of the Shibboleth Users list, and failing all else, then please send a detailed question to the Shibboleth Users list. I'm sorry this didn't work out just yet. opensaml::saml2md::MetadataException at (https://sp.testshib.org/Shibboleth.sso/TestShib) Unable to locate metadata for identity provider (https://myhosturl/idp/shibboleth) Into my Log File I read: 2013-11-25 06:08:04 DEBUG Shibboleth.Listener [1005]: dispatching message (default/TestShib::run::SAML2SI) 2013-11-25 06:08:04 WARN Shibboleth.SessionInitiator.SAML2 [1005]: unable to locate metadata for provider (https://myhosturl/idp/shibboleth) (last lines) any suggestins? thank -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
