Shibboleth Developers

["Lisa Tan" <>]

Nate,

 

Thank you very much for your quick response. It works.

 

Now I’d like to take a little further step to use our LDAP account to authenticate users. I have used https://spaces.internet2.edu/display/SHIB/IdPUderAuthnConfig as my reference. After modifying shibboleth-idp’s web.xml and Tomcat’s server.xml, I couldn’t use my ldap id to authenticate but I can still use myself to authenticate against sp.testshib.org.

 

I checked the log files but didn’t find useful information. Any direction will be appreciated.

 

Thanks,

 

Lisa

 

 

 

---

From: Nate Klingenstein [mailto:]
Sent: Thursday, July 12, 2007 1:53 PM
To:
Subject: Re: Source attributes from LDAP

 

Lisa,

 

If you're using the LDAP directory hosted by TestShib and your own SSO service, which is basic authentication by default, you'll need to add the "alterego" and "superego" users to your user.db file with htpasswd:

 

htpasswd /etc/httpd/conf/user.db alterego

htpasswd /etc/httpd/conf/user.db superego

 

Those people are in TestShib's LDAP. If I've guessed what you mean by "clear login screen" properly -- authentication failed -- once you do that, it should work.

 

Take care,

Nate.

 

On 12 Jul 2007, at 17:38, Lisa Tan wrote:

I have followed the url to source attributes from Testshib LDAP.

https://www.testshib.org/testshib-reg/nextsteps.jsp

When I use alterego and superego to do authentication, I received clear

login screen. If I use myself, I can retrieve the attributes.