SAML 2.0 Discovery Service

[Sakhi Hadebe]

Hi,

I am new to Federation services. I want to know how to enable or install the discovery service on a debian platform. I have read thru many post but still I am not clear how to continue.

I need your help please.

Regards,

Sakhi Hadebe

[Peter Schober]

* Sakhi Hadebe <sokh...@gmail.com> [2014-03-10 13:10]:

> I am new to Federation services. I want to know how to enable or
> install the discovery service on a debian platform.

What "the discovery service"? SimpleSAMLphp comes with two different
interfaces and http://discojuice.org/ may be seen as relating to
SimpleSAMLphp but is a different project.
-peter

[Sakhi Hadebe]

Hi Peter,

I am trying to set up a discovery service. There is the embedded one with the name of discopower .

--
You received this message because you are subscribed to a topic in the Google Groups "simpleSAMLphp" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/simplesamlphp/tiJSmrheh9g/unsubscribe.
To unsubscribe from this group and all its topics, send an email to simplesamlph...@googlegroups.com.
To post to this group, send email to simple...@googlegroups.com.
Visit this group at http://groups.google.com/group/simplesamlphp.
For more options, visit https://groups.google.com/d/optout.

[Peter Schober]

* Sakhi Hadebe <sokh...@gmail.com> [2014-03-11 08:39]:

> I am trying to set up a discovery service. There is the embedded one
> with the name of discopower .

Yes, there is also one in the saml module, the one you enable by
setting 'discoURL' => NULL in the saml:SP authsource.

The DS in the module 'discopower' you enable like any other module in
SimpleSAMLphp, by creating a file called "enable" in the module's
directory. Which is covered in the installation documentation, so you
should already know that:
https://simplesamlphp.org/docs/stable/simplesamlphp-install#section_9
What then is your question?
-peter

[Sakhi Hadebe]

Hi,

Sorry to come back to you late.

Yes I know how to enable the module. My problem is setting it up. For instance if I want to use the discovery service to select the IDP, from the SP how do I point to the DS, and from the DS side, is there a configuration file that I can setup to display my IDP.

Right now I have an SP and the IDP set up. I now need the DS to present me with a list of IDPs

Thanks in advance.

-peter

[Peter Schober]

* Sakhi Hadebe <sokh...@gmail.com> [2014-03-12 16:05]:

> Yes I know how to enable the module. My problem is setting it up. For
> instance if I want to use the discovery service to select the IDP, from the
> SP how do I point to the DS, and from the DS side, is there a configuration
> file that I can setup to display my IDP.

The IDP doesn't factor into it. You either install the SAMLDS on a
seperate host (seperate from both IDP and SP) or, more commonly, on
the SP, so you don't have to send subjects to a different server.

Using discopower seems to be undocumented, but it's as simple as
setting 'discoURL' within your 'saml:SP' in your authsources.php to
https://your.example.org/path/to/simplesamlphp/module.php/discopower/disco.php
Replacing the hostname and the URL path up to module.php.
-peter

[Sakhi Hadebe]

Thanks Peter, I have finally got it right. Now my problem is to change these IdPs (edugain partners) into my IdP.

Your help is highly appreciated

-peter