[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[upki-fed:00525] Re: IdP$B$,5/F0$7$^$;$s!J%F%9%H%U%'%G%l!<(B$B%7%g%s!K(B

Subject: [upki-fed:00525] Re: IdP$B$,5/F0$7$^$;$s!J%F%9%H%U%'%G%l!<(B$B%7%g%s!K(B
Date: Fri, 2 Nov 2012 15:09:11 +0900
From: $B@VLZK.M:(B <xxxxx@xxxxxxxxxxxx>

$BEl5~ET0e3XAm9g8&5f=j!!@VBtMM(B

$B%"%C%H%&%'%"$N@VLZ$G$9!#(B

> ldapURL="ldap://localhost" baseDN="dc=igakuken,dc=or,dc=jp"
> principal="cn=test,ou=apps"

principal $B$r(B  "cn=test,ou=apps,dc=igakuken,dc=or,dc=jp"
$B$KJQ99$7$F;n$7$FD:$1$^$;$s$G$7$g$&$+!)(B


$B59$7$/$*4j$$CW$7$^$9!#(B



2012/11/2 Akazawa TS <xxxxxxxx@xxxxxxxxxxxxxx>:
> upki-fed ML$B$N3'MM!"@VLZMM!"EZ20MM!"Cf;3MM(B
>
> $B!!ET0e3X8&$N@VBt$G$9!#(B
> $B!!$4=u8@$"$j$,$H$&$4$6$$$^$9!#(B
>
> $B!!$^$:!"Bh#1$K$*CQ$:$+$7$J$,$iK^%_%9$,$R$H$D$"$j$^$7$?!#(B
> $B!!(B/etc/hosts.allow $B$K(B
> $B!!(B------------------------------
> $B!!(Bslapd: localhost
> $B!!(B------------------------------
> $B!!$H$"$j!"(B
> $B!!(B------------------------------
> $B!!(Bslapd: 127.0.0.1
> $B!!(B------------------------------
> $B!!$H=q$-D>$9$3$H$G(B $B%m!<%+%k$+$i(B LDAP$B$K@\B3$G$-$k$h$&$J$j$^$7$?!#(B
> $B!!!J(B/etc/hosts.deny $B$G$O(B ALL:ALL $B$GA4$F5qH]@_Dj$K$J$C$F$$$^$9!K(B
>
> $B!!:rF|$NCJ3,$d$=$l0JA0$N3NG'$G$O$A$c$s$H@\B3$G$-$F$$$?$N$G!"(B
> $B!!$I$3$+$NCJ3,$G(B /etc/hosts.allow$B$H(B/etc/hosts.deny $B$r2C$($?$N(B
> $B!!$@$H;W$$$^$9!#(B
>
> $B!!>/$J$/$H$b8=:_$O!"ldap://localhost -b dc=igakuken,dc=or,dc=jp -D
> cn=test,ou=apps,dc=igakuken,dc=or,dc=jp -W uid=shinkei5
> Enter LDAP Password:
> # extended LDIF
> #
> # LDAPv3
> # base <dc=igakuken,dc=or,dc=jp> with scope subtree
> # filter: uid=shinkei5
> # requesting: ALL
> #
>
> # shinkei5, Users, igakuken.or.jp
> dn: uid=shinkei5,ou=Users,dc=igakuken,dc=or,dc=jp
> uid: shinkei5
> igakGroupNum: 61
> igakMid: 5
> objectClass: inetOrgPerson
> objectClass: igakKamikitaPerson
> employeeNumber: 03330005
>   << $B8eN,(B >>
> -----------------------------------------------------------------
>
> $B!!$7$+$7!"$3$l$G2r7h$O$7$^$;$s$G$7$?!#(B
> $B!!$D$^$j!":F$S0J2<$N$h$&$K(B tomcat6 $B$r%9%?!<%H$5$;$?$H$-$K(BERROR$B$,(B
> $B!!H/@8$7$^$9!#(B
> # service tomcat6 stop
> # service httpd restart
> # service tomcat6 start
>
> $B!!$3$N$H$-$N(B
> $B!!(B/opt/shibboleth-idp/logs/idp-process.log $B$Oldap://localhost" baseDN="dc=igakuken,dc=or,dc=jp"
> principal="cn=test,ou=apps"
>         principalCredential="*****">
>         <FilterTemplate>
>             <![CDATA[
>                 (uid=$requestContext.principalName)
>             ]]>
>         </FilterTemplate>
>     </resolver:DataConnector>
>    <!-- -->
> <<$B8eN,(B>>
> -----------------------------------------------------------------------
>
>
>> $B$^$:$OLdBj$r@Z$jJ,$1$k$?$a$K!$(Baacli.sh $B$GF0:n%A%'%C%/$7$F$_$?$i$I$&$G(B
>> $B$7$g$&$+!%(Bshibboleth $B$r%$%s%9%H!<%k$7$?%G%#%l%/%H%j$K0\F0$7$F!$(B
>>
>>      cd /opt/shibboleth-idp
>>      ./bin/aacli.sh --configDir=conf/ --principai=$B%f!<%6L>(B
>>
>> $B$H$7$F!$$A$c$s$HCM$,$+$($C$F$/$k$+$I$&$+$r8+$F$/$@$5$$!%(B
>
> $B!!EZ20MM$N",$N$4;XE&$NE@!"0J2<$N$h$&$K3NG'$7$F$_$^$7$?!#(B
> $B!!(BXML$B$O5"$C$FMh$:!"%(%i!<$,1d!9$H=PNO$5$l$F$7$^$$$^$7$?!#(B
> -----------------------------------------------------------------------
> #cd /opt/shibboleth-idp
> # ./bin/aacli.sh --configDir=conf/ --principal="uid=shinkei5"
> Exception in thread "main"
> org.springframework.beans.factory.BeanCreationException:
>  Error creating bean with name 'shibboleth.AttributeResolver':
>  Invocation of init method failed; nested exception is
>  edu.internet2.middleware.shibboleth.common.service.ServiceException:
>  Configuration was not loaded for shibboleth.AttributeResolver service,
>  error creating components.
>         at org.springframework.beans.factory.support
>  .AbstractAutowireCapableBeanFactory
>  .initializeBean(AbstractAutowireCapableBeanFactory.java:1338)
> $B!!(B<<$B8eN,(B>>
> -----------------------------------------------------------------------
>
> $B!!(Baacli.sh --help $B$O8+$F$_$^$7$?$,!"(B--principal= $B$N5-K!$,$h$/$o$+$i$J$$(B
> $B!!$N$G!"0J2<$N#2DL$j$b;n$7$^$7$?$,!"F1MM$N%(%i!<$,H/@8$7$^$7$?!#(B
> -----------------------------------------------------------------------
> # ./bin/aacli.sh --configDir=conf/
> --principal="uid=shinkei5,ou=users,dc=igakuken,dc=or,dc=jp"
> Exception in thread "main"
>  org.springframework.beans.factory.BeanCreationException:
>  Error creating bean with name 'shibboleth.AttributeResolver':
>  Invocation of init method failed; nested exception is
>  edu.internet2.middleware.shibboleth.common.service.ServiceException:
>  Configuration was not loaded for shibboleth.AttributeResolver service,
>  error creating components.
>         at org.springframework.beans.factory.support
>  .AbstractAutowireCapableBeanFactory
>  .initializeBean(AbstractAutowireCapableBeanFactory.java:1338)
> $B!!(B<<$B8eN,(B>>
> -----------------------------------------------------------------------
> # ./bin/aacli.sh --configDir=conf/ --principal="uid=shinkei5,ou=users"
> Exception in thread "main"
>  org.springframework.beans.factory.BeanCreationException:
>  Error creating bean with name 'shibboleth.AttributeResolver':
>  Invocation of init method failed; nested exception is
>  edu.internet2.middleware.shibboleth.common.service.ServiceException:
>  Configuration was not loaded for shibboleth.AttributeResolver service,
>  error creating components.
>         at org.springframework.beans.factory.support
>  .AbstractAutowireCapableBeanFactory
>  .initializeBean(AbstractAutowireCapableBeanFactory.java:1338)
> $B!!(B<<$B8eN,(B>>
> -----------------------------------------------------------------------
>
> $B!!8=;~E@$G$O(B attribute-resolver.xml $B$N!!(B<resolver:DataConnector$B!!%?%0$K(B
> $B!!$*$1$k!"B0@-(Bprincipal$B$NCM$H$7$F(B LDAP$B$K@\B3$9$k:]$N(B dn $B$r5-:\$7$F$$$k$N(B
> $B!!$G$9$,!"$3$l$,4V0c$C$F$$$k$h$&$J5$$,$7$F$$$^$9!#(B
>
> $B!!$=$b$=$b!"(BLDAP$B$K$*$1$k(B principal $B$H$O2?$+$,$h$/$o$+$C$F$*$j$^$;$s!#(B
> $B!!(BGoole$B$G8!:w$9$k$H!"(BWindows$B$N(BUser Principal$B$H$+!"(BKeroberos$B$N$b$N$H$+(B
> $B!!(BOracle$B$N$b$N$H$+!"$"$^$j4X78$J$5$=$&$J$b$N$,Ns5s$5$l$^$9!#(B
>
> $B!!(B aacli.sh --help  $B$GF@$i$l$k!"(B
>     --principal  Principal name (user id) of the person
>                  whose attributes will be retrieved
> $B!!$,0F30@52r$J$N$G$7$g$&$+!#(B
>
> $B!!Cf;3MM$,$4;XE&$/$@$5$C$?!"(BBIND$B$,$G$-$J$$(BLDAP$B%5!<%P$N>l9g$O(B
>> login.config$B$K(BbindDn$B$H(BbindCredential$B$N@_Dj$bI,MW$+$bCN$l$^$;$s!#(B
> --
> $B8x1W:bCDK!?MEl5~ET0e3XAm9g8&5f=j(B $B>pJs%7%9%F%`<<(B
> $B@VBtG/0l(B
>

Follow-Ups:
- [upki-fed:00527] Re: IdP$B$,5/F0$7$^$;$s!J%F%9%H%U%'%G%l!<(B$B%7%g%s!K(B
  - From: Akazawa TS

References:
- [upki-fed:00517] IdP$B$,5/F0$7$^$;$s!J%F%9%H%U%'%G%l!<%7%g(B$B%s!K(B
  - From: Akazawa TS
- [upki-fed:00518] Re: IdP$B$,5/F0$7$^$;$s!J%F%9%H%U%'%G%l!<(B$B%7%g%s!K(B
  - From: yamaji
- [upki-fed:00520] Re: IdP$B$,5/F0$7$^$;$s!J%F%9%H%U%'%G%l!<(B$B%7%g%s!K(B
  - From: Akazawa TS
- [upki-fed:00521] Re: IdP$B$,5/F0$7$^$;$s!J%F%9%H%U%'%G%l!<(B$B%7%g%s!K(B
  - From: $B@VLZK.M:(B
- [upki-fed:00524] Re: IdP$B$,5/F0$7$^$;$s!J%F%9%H%U%'%G%l!<(B$B%7%g%s!K(B
  - From: Akazawa TS

Prev by Date: [upki-fed:00524] Re: IdP$B$,5/F0$7$^$;$s!J%F%9%H%U%'%G%l!<(B$B%7%g%s!K(B
Next by Date: [upki-fed:00526] Re: IdP$B$,5/F0$7$^$;$s!J%F%9%H%U%'%G%l!<(B$B%7%g%s!K(B
Previous by thread: [upki-fed:00524] Re: IdP$B$,5/F0$7$^$;$s!J%F%9%H%U%'%G%l!<(B$B%7%g%s!K(B
Next by thread: [upki-fed:00527] Re: IdP$B$,5/F0$7$^$;$s!J%F%9%H%U%'%G%l!<(B$B%7%g%s!K(B
Index(es):
- Date
- Thread

[upki-fed:00525] Re: IdP$B$,5/F0$7$^$;$s!J%F%9%H%U%'%G%l!<(B$B%7%g%s!K(B

[upki-fed:00525] Re: IdP$B$,5/F0$7$^$;$s!J%F%9%H%U%'%G%l!<(B$B%7%g%s!K(B