Skip to Content.
Sympa Menu

comanage-users - Re: [comanage-users] Trouble with the Comanage Release 2 VM

Subject: COmanage Users List

List archive

Re: [comanage-users] Trouble with the Comanage Release 2 VM


Chronological Thread 
  • From: Jeremy Rosenberg <>
  • To: "" <>
  • Subject: Re: [comanage-users] Trouble with the Comanage Release 2 VM
  • Date: Thu, 9 Feb 2017 13:51:34 -0800
  • Ironport-phdr: 9a23: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

Ok, so I have the application running, the integration with TIER testbed works fine.  I’m now having trouble because I’m not receiving the invitation emails.  This might just be my unfamiliarity with php, but I assume I have configured something incorrectly and would like to check the logs.  Any tips on where the application logs something like an email error?

Jeremy


On Feb 8, 2017, at 1:14 PM, Paul Caskey <> wrote:

Thanks for letting me know, Jeremy.
 
Feedback to the TIER program will be much appreciated.  COmanage is a powerful platform that we are eager to see deployed across the community.
 
TTYL
 
From: Jeremy Rosenberg <>
Date: Wednesday, February 8, 2017 at 2:51 PM
To: Paul Caskey <>
Cc: "" <>
Subject: Re: [comanage-users] Trouble with the Comanage Release 2 VM
 
Thanks Paul 
 
It’s working great now I was able to get the VM running.
 
Looks good.
 
Jeremy
 
====================================================
Jeremy Rosenberg
Manager, CalNet Identity and Access Management 
UC Berkeley
 
 

 

 
On Feb 7, 2017, at 8:29 PM, Paul Caskey <> wrote:
 

Hi Jeremy-

As you’ve diagnosed, this looks to be a shibb SP metadata problem.

The error at the IdP was:
2017-02-08 00:19:50,293 - INFO [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:128] - Message Handler:  No metadata returned forhttps://169.229.209.86/registry in role {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor with protocol urn:oasis:names:tc:SAML:2.0:protocol

I see metadata for the entityID above, but the IDP is not reloading it every 5 minutes as it was told to do.

This IdP is an atypical install and it’s not doing well at the moment and I’m having trouble figuring it out (how many tomcat instances does one server need?), so it may be flaky for a little bit tonight…



TTYL



On 2/7/17, 6:46 PM, " on behalf of Jeremy Rosenberg" < on behalf of > wrote:

   I’m not sure if this is the place to seek support but I’m trying to test out COmanage Registry R2 V2.

   I followed all the steps at:

   https://spaces.internet2.edu/display/TPD/COmanage+Release+2+Documentation

   And the VM is running.  I can bring up the UI at https://[IP Address]/registry

   I click the Login button.

   I select TIER Testbed Shibboleth IdP which has this link:

   https://[IP Address]/Shibboleth.sso/Login?SAMLDS=1&target=ss%3Amem%3A327c412aa271be0ba1a80657242073f24c0bb2b06520c4c80a97cdb2d0410819&entityID=https%3A%2F%2Fidp.testbed.tier.internet2.edu%2Fidp%2Fshibboleth

   Which brings up an error page on idp.testbed.tier.internet2.edu

   “Web Login Service - Unsupported Request”
   “The application you have accessed is not registered for use with this service”

   This is after waiting for a long time after registering my SPs, on several different days.

   I assume I have made a mistake when registering my VM as an SP in the testbed IDP.  But I’m not sure how to debug that.

   If there is somewhere else I need to go for support on adding my VM as an SP to the testbed, please let me know.

   Jeremy

   P.S. As an aside, someone should clean up the "Configuring the COmanage Release" page.  It looks like some bullets were added, but the references to earlier steps within the text was not updated.  So now references are confusing. For example, Step 2.r. references the certificate output in 2.o.  But the certificate output is now described in 2.q.  (I kept thinking I missed somekind of output from run.sh script)


   ====================================================
   Jeremy Rosenberg
   Manager, CalNet Identity and Access Management 
   UC Berkeley
   






 

====================================================
Jeremy Rosenberg
Manager, CalNet Identity and Access Management 
UC Berkeley








Archive powered by MHonArc 2.6.19.

Top of Page