Install Fest Workshops Resources
VM Images
You will need VMware player (Windows, Linux), VMware Server (Windows, or Linux) or VMware Fusion (Mac) in order to run the following image. Note that in case of VMware Player you need two physical hosts to run both, Test IdP and Hands-on image because VMware Player only can run one virtual machine at a time.
- Shibboleth Install Fest Hands-on VM image
1.6GB, Login name/password: root/password
- 17. November 2008: Added Scott Cantor's catchup files containing working configration files according to hands-on guide. The scripts to install these files can be found in /opt/installfest/catchup/
- 28. January 2009: Added missing /var/run/apacheds/default directory, alias for vi pointing to vim (for syntax highlighting), an ntpdate command in root's .bashrc to sync time with testidp.example.org if this host is available, error tolerant apacheds init.d script, removed AuthnRequestsSigned="1" in all SP's metadata and automatic startup of apacheds during boot time.
- 16. March 2009: Decreased CPU interrupt frequency which should make image run slightly faster and reduce clock sync problems. Added three terminal resolutions (800x600, 1024x768 and 1280x1024). Replaced default terminal font for better readability.
- February 22. 2010: Updated CENT OS, Java 1.6.0_18 Tomcat 6.0.24, Shibboleth Service Provider 2.3.1 and Identity Provider 2.1.5. Added symlinks for java and tomcat in opt directory.
- March 5. 2010: Fixed hostname typo in .bashrc, ran /usr/bin/vmware-tools-config.pl
- March 18. 2010: Fixed idpbasic.sh catchup script to copy idp.xml to the right place, extended SP catchup script to create .htaccess files in cgi-bin and other places, installed a cron job to sync time with testidp
- October 26. 2010: Changed attribute viewer script to show all available attributes
- Test IdP/DS VM image
1.2GB, Login name/password: root/installfestadmin- August 21. 2008: Relaxed clock skew settings
- January 29. 2010: Resigned IdP metadata (expired on 2001-01-01) and added minor improvements. If you still are using an older image, remove the validUntil="..." in the root element of /opt/tomcat/webapps/ROOT/testidp-metadata_unsigned.xml and then run ~/signMetdata.sh (yes, including that typo :-) ). This should then sign the metadata file again and thus fix the problem.
- October 26. 2010: Changed attribute viewer script to show all available attributes
Install Fest at home
For repeating the instructions on the Hands-on slides, first download the two images above and uncompress them. If you are running them on a single physical host, start them both up and proceed first with the Service Provider hands-on part and then proceed with the Identity Provider hands-on parts. It may be that VMware Player/Fusion complains that the network interfaces are not available. If this is the case, make sure that there is an ethernet cable connected to your laptop (connecting it to a hub should be sufficient).
In case you have to use two different physical hosts for the images, make sure they are connected via Ethernet and both have an IP/subnet mask 10.0.3.N/255.0.0.0 where N is a number between 1 and 254.
Before starting with the hands-on session, pick a participation number between 10 and 255. Use this number wherever you see a bold red # in the slides and documents.
Slides
All these slides were used during the Install Fests. The typos discovered during the InstsallFests are all fixed. In case you need the original PowerPoint presentations, please send an email to aai@switch.ch.
Documents
Some of the following documents were created using Microsoft Office 2004. Feel free to adapt or change any document that contains the Creative Commons icon on their first page/slide (see License section below).
| Shibboleth Install Fest March 2010 complete hand outs | Complete and original version distributed during workshop. Includes a few minor typos. (PDF, 22MB) |
| VM image information and LDAP accounts |
Word, PDF
|
| Separate hand-out with hints for debugging, testing and file editing |
PowerPoint, PDF
|
| VM image information and LDAP accounts |
Word, PDF
|
| Separate hand-out with hints for debugging, testing and file editing |
PowerPoint, PDF
|
| Federated Identity Management |
PowerPoint, PDF
|
| Introduction to Shibboleth |
PowerPoint, PDF
|
| Shibboleth Service Provider Hands-On |
PowerPoint, PDF
|
| Resource Registry | |
| Group Management Tool | |
| Virtual Home Organization | |
| Shibboleth Identity Provider Hands-On: Basics & Installation |
PowerPoint, PDF
|
| Shibboleth Identity Provider Hands-On: Authentication |
PowerPoint, PDF
|
| Shibboleth Identity Provider Hands-On: Attribute Resolution |
PowerPoint, PDF
|
| Shibboleth Identity Provider Hands-On: Attribute Filtering |
PowerPoint, PDF
|
| uApprove - User attribute release consent | |
| Identity Provider Best Current Practices |
License
All linked VMware images on this page as well as all slides and documents that contain the following icon are licensed under the Creative Commons Attribution-Share Alike 3.0 Unported License.
