Compiling software from source on UNIX platforms can be difficult! If you run into a problem, we probably won't be able to help you.
This document explains how to set up a Shibboleth Service Provider (SP) on Linux and integrate it with MyAccess.
These instructions should work on any Linux or UNIX system where Shibboleth can run.
Before you start, you will need:
- A C++ compiler and associated toolchain (libstdc++, autoconf, make, etc.)
- A functional Apache web server and the source code tree you installed from, or equivalent header files.
- OpenSSL and the source code tree you installed from, or equivalent header files
- Curl and the source code tree you installed from, or equivalent header files
Downloading and unpacking
Download the source .tar.gz file from each of these locations:
- http://shibboleth.net/downloads/c++-opensaml/latest/ (both opensaml and xmltooling)
Unpack each file. The command you need depends on your OS version. Try one of these:
Compiling and installing
Before continuing, log in as root or run a shell with root privileges. The specific command depends on your OS version.
Change into each of the directories one at a time, and run these commands in each:
The order you should go in is:
For Shibboleth, use this command instead of the generic "./configure":
Depending on the version of Apache you are using, you need to include a different configuration file in your httpd.conf
- Apache 2.2+ should use apache22.config
- Apache 2.0 should use apache20.config
- Apache 1.3 should use apache.config
All three files are located in /usr/local/etc/shibboleth/. To include the file, either use the Include directive, make a symbolic link into a directory that is already being Included, or simply copy the contents into httpd.conf.
The rest of the configuration isn't specific to Linux/UNIX. Please follow the generic instructions and return here when you are finished. Note that your shibboleth2.xml file is located in /usr/local/etc/shibboleth/.
Start the Shibboleth daemon by running this command as root:
You should also configure your system to run shibd on startup. The specifics depend on your OS version.