comanage-users - Re: [comanage-users] Trouble with the Comanage Release 2 VM
Subject: COmanage Users List
List archive
- From: Paul Caskey <>
- To: Jeremy Rosenberg <>, "" <>
- Subject: Re: [comanage-users] Trouble with the Comanage Release 2 VM
- Date: Wed, 8 Feb 2017 04:29:04 +0000
- Accept-language: en-US
- Authentication-results: berkeley.edu; dkim=none (message not signed) header.d=none;berkeley.edu; dmarc=none action=none header.from=internet2.edu;
- Ironport-phdr: 9a23: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
- Spamdiagnosticoutput: 1:0
Hi Jeremy-
As you’ve diagnosed, this looks to be a shibb SP metadata problem.
The error at the IdP was:
2017-02-08 00:19:50,293 - INFO
[org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:128] -
Message Handler: No metadata returned for https://169.229.209.86/registry in
role {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor with protocol
urn:oasis:names:tc:SAML:2.0:protocol
I see metadata for the entityID above, but the IDP is not reloading it every
5 minutes as it was told to do.
This IdP is an atypical install and it’s not doing well at the moment and I’m
having trouble figuring it out (how many tomcat instances does one server
need?), so it may be flaky for a little bit tonight…
TTYL
On 2/7/17, 6:46 PM,
"
on behalf of Jeremy Rosenberg"
<
on behalf of
>
wrote:
I’m not sure if this is the place to seek support but I’m trying to test
out COmanage Registry R2 V2.
I followed all the steps at:
https://spaces.internet2.edu/display/TPD/COmanage+Release+2+Documentation
And the VM is running. I can bring up the UI at https://[IP
Address]/registry
I click the Login button.
I select TIER Testbed Shibboleth IdP which has this link:
https://[IP
Address]/Shibboleth.sso/Login?SAMLDS=1&target=ss%3Amem%3A327c412aa271be0ba1a80657242073f24c0bb2b06520c4c80a97cdb2d0410819&entityID=https%3A%2F%2Fidp.testbed.tier.internet2.edu%2Fidp%2Fshibboleth
Which brings up an error page on idp.testbed.tier.internet2.edu
“Web Login Service - Unsupported Request”
“The application you have accessed is not registered for use with this
service”
This is after waiting for a long time after registering my SPs, on
several different days.
I assume I have made a mistake when registering my VM as an SP in the
testbed IDP. But I’m not sure how to debug that.
If there is somewhere else I need to go for support on adding my VM as an
SP to the testbed, please let me know.
Jeremy
P.S. As an aside, someone should clean up the "Configuring the COmanage
Release" page. It looks like some bullets were added, but the references to
earlier steps within the text was not updated. So now references are
confusing. For example, Step 2.r. references the certificate output in 2.o.
But the certificate output is now described in 2.q. (I kept thinking I
missed somekind of output from run.sh script)
====================================================
Jeremy Rosenberg
Manager, CalNet Identity and Access Management
UC Berkeley
- [comanage-users] Trouble with the Comanage Release 2 VM, Jeremy Rosenberg, 02/08/2017
- Re: [comanage-users] Trouble with the Comanage Release 2 VM, Paul Caskey, 02/08/2017
- Re: [comanage-users] Trouble with the Comanage Release 2 VM, Paul Caskey, 02/08/2017
- Re: [comanage-users] Trouble with the Comanage Release 2 VM, Jeremy Rosenberg, 02/08/2017
- Re: [comanage-users] Trouble with the Comanage Release 2 VM, Paul Caskey, 02/08/2017
- Re: [comanage-users] Trouble with the Comanage Release 2 VM, Jeremy Rosenberg, 02/09/2017
- Re: [comanage-users] Trouble with the Comanage Release 2 VM, Scott Koranda, 02/13/2017
- Re: [comanage-users] Trouble with the Comanage Release 2 VM, Jeremy Rosenberg, 02/13/2017
- Re: [comanage-users] Trouble with the Comanage Release 2 VM, Michael A Grady, 02/13/2017
- Re: [comanage-users] Trouble with the Comanage Release 2 VM, Jeremy Rosenberg, 02/13/2017
- Re: [comanage-users] Trouble with the Comanage Release 2 VM, Scott Koranda, 02/13/2017
- Re: [comanage-users] Trouble with the Comanage Release 2 VM, Jeremy Rosenberg, 02/09/2017
- Re: [comanage-users] Trouble with the Comanage Release 2 VM, Paul Caskey, 02/08/2017
- Re: [comanage-users] Trouble with the Comanage Release 2 VM, Michael A Grady, 02/08/2017
- Re: [comanage-users] Trouble with the Comanage Release 2 VM, Paul Caskey, 02/08/2017
Archive powered by MHonArc 2.6.19.