Shibboleth
Révision datée du 13 mai 2009 à 08:43 par Julien.garnier (discussion | contributions)
Installation Shibboleth-sp
Debian
* Prerequis :
apt-get install build-essential libssl0.9.8 libssl-dev libcurl3 libcurl3-dev apache2-threaded-dev
* log4shib:
wget http://shibboleth.internet2.edu/downloads/log4shib/1.0/log4shib-1.0.tar.gz tar xvzf log4shib-1.0.tar.gz ./configure --disable-static --disable-doxygen --prefix=/opt/shibboleth-sp make && make install
* Xerces-C: cd xerces-c-src_2_8_0
wget http://archive.apache.org/dist/xml/xerces-c/sources/xerces-c-src_2_8_0.tar.gz tar xvzf xerces-c-src_2_7_0.tar.gz cd xerces-c-src_2_8_0 export XERCESCROOT=`pwd` cd src/xercesc ./runConfigure -p linux -r pthread -P /opt/shibboleth-sp make && make install
* XML-Security-C:
wget http://xml.apache.org/security/dist/c-library/xml-security-c-1.4.0.tar.gz tar xvzf xml-security-c-1.4.0.tar.gz cd xml-security-c-1.4.0 ./configure --without-xalan --prefix=/opt/shibboleth-sp make && make install
* XMLTooling-C:
wget http://shibboleth.internet2.edu/downloads/opensaml/cpp/latest/ tar xvzf xmltooling-1.1.tar.gz cd xmltooling-1.1 ./configure --with-log4shib=/opt/shibboleth-sp --prefix=/opt/shibboleth-sp -C
* OpenSAML-C:
wget http://shibboleth.internet2.edu/downloads/opensaml/cpp/latest/opensaml-2.1.tar.gz tar xvzf opensaml-2.1.tar.gz ./configure --with-log4shib=/opt/shibboleth-sp --prefix=/opt/shibboleth-sp -C make && make install
* Shibboleth:
wget http://shibboleth.internet2.edu/downloads/shibboleth/cppsp/latest/shibboleth-sp-2.1.tar.gz tar xvzf shibboleth-sp-2.1.tar.gz cd shibboleth-2.1 ./configure --with-log4shib=/opt/shibboleth-sp make && make install
Red Hat
* log4shib:
wget ftp://ftp.cru.fr/pub/shibboleth/shibboleth/cppsp/latest/RPMS/i386/RHE/4/log4shib-1.0-1.i386.rpm rpm -ivh log4shib-1.0-1.i386.rpm
* Xerces:
wget ftp://ftp.cru.fr/pub/shibboleth/shibboleth/cppsp/latest/RPMS/i386/RHE/4/xerces-c-2.8.0-1.i386.rpm rpm -ivh xerces-c-2.8.0-1.i386.rpm
* xml-security:
wget ftp://ftp.cru.fr/pub/shibboleth/shibboleth/cppsp/latest/RPMS/i386/RHE/4/xml-security-c-1.4.0-1.i386.rpm rpm -ivh xml-security-c-1.4.0-1.i386.rpm
* xmltooling:
wget ftp://ftp.cru.fr/pub/shibboleth/shibboleth/cppsp/latest/RPMS/i386/RHE/4/xmltooling-1.1-1.i386.rpm rpm -ivh xmltooling-1.1-1.i386.rpm
* opensaml:
wget ftp://ftp.cru.fr/pub/shibboleth/shibboleth/cppsp/latest/RPMS/i386/RHE/4/opensaml-2.1-1.i386.rpm rpm -ivh opensaml-2.1-1.i386.rpm
* Shibboleth-sp:
wget ftp://ftp.cru.fr/pub/shibboleth/shibboleth/cppsp/latest/RPMS/i386/RHE/4/shibboleth-2.1-1.i386.rpm rpm -ivh shibboleth-2.1-1.i386.rpm
Certificats
openssl genrsa 1024 > /tmp/dr13.cnrs.fr.key openssl req -new -x509 -nodes -sha1 -days 7300 -subj "/C=FR/O=CNRS/CN=dr13.cnrs.fr" -key /tmp/dr13.cnrs.fr.key >/tmp/dr13.cnrs.fr.crt openssl x509 -noout -fingerprint -text < /tmp/dr13.cnrs.fr.crt >> /tmp/dr13.cnrs.fr.crt mv /tmp/dr13.cnrs.fr.* /etc/shibboleth/ssl/
