Filter
Top Products
8-38
User Guide for Cisco Digital Media Manager 5.4.x
OL-15762-05
Chapter8 Authentication and Federated Identity
Procedures
Step 7
Edit the
handler file.
a.
Open /opt/shibboleth-idp/conf/handler.xml for editing.
b.
Uncomment line 109.
<!-- Username/password login handler -->
<ph:LoginHandler xsi:type="ph:UsernamePassword"
jaasConfigurationLocation="file:///opt/shibboleth-idp/conf/login.config">
<ph:AuthenticationMethod>urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtect
edTransport</ph:AuthenticationMethod>
</ph:LoginHandler>
Step 8
Edit the login
config file.
a.
Open /opt/shibboleth-idp/conf/login.config for editing.
b.
Find this string, at or near line 45:
};
c.
Enter this material immediately before }; .
edu.vt.middleware.ldap.jaas.LdapLoginModule optional
ldapUrl="ldap://<YOUR_ACTIVE_DIRECTORY_SERVER_IP>:389"
bindDn="cn=<ADMINISTRATOR_CN>, cn=<USERBASE>, dc=<HOSTNAME>, dc=<EXAMPLE>,
dc=<COM>"
bindCredential="<ADMINISTTRATOR_PASSWORD>"
baseDn="cn=<USERBASE>, dc=<HOSTNAME>, dc=<EXAMPLE>, dc=<COM>"
ssl="false"
tls="false"
userFilter="sAMAccountName={0}";
Step 9
Edit the replying
party file.
a.
Open /opt/shibboleth-idp/conf/replying-party.xml for editing.
b.
Find this section:
<!-- ========================================== -->
<!- Metadata Configuration ->
<!-- ========================================== -->
c.
Enter these lines after the Metadata Configuration section heading, at or near line 123.
<metadata:MetadataProvider
id="<HOSTNAME_ONLY_FOR_YOUR_SP>"
xsi:type="FilesystemMetadataProvider"
xmlns="urn:mace:shibboleth:2.0:metadata"
metadataFile="/opt/shibboleth-idp/metadata/<EXPORTED_SP_SETTINGS_FILENAME>.xml"
maintainExpiredMetadata="true"
/>
</metadata:MetadataProvider>