[Shib-Users] Shibboleth version and SSO

[Shen Hongzhou]

Hi,all

We have tried two shibboleth with different version number, and find
that one can get the SSO between 2 SPs, and another one can't get the
SSO between 2 SPs. The details are as follows:

<1>idp:2.0.0, sp:2.0-6, ds:1.0.0
Result: We can't get SSO between 2 SPs, that is after we login SP1, if
we request the SP2 directly, we have to login again.

<2>idp:2.1.2, sp:2.2-3, ds:1.1.0 (that's the lates version)
Result: We can get SSO between 2 SPs, that is after we login SP1, if
we request the SP2 directly, we don't have to login agin.

I just want to know: Does the <1> version support the SSO? Or I have
something config wrong?

Best Regards!

Shen

[Chad La Joie]

All versions of Shibboleth support SSO. Shib 1 only supports SAML 1
while Shib 2 supports SAML 1 & 2. If one isn't working for you then
it's misconfiguration on your part. Look at the logs to figure out what
is going on.

--
SWITCH
Serving Swiss Universities
--------------------------
Chad La Joie, Software Engineer, Net Services
Werdstrasse 2, P.O. Box, 8021 Zürich, Switzerland
phone +41 44 268 15 75, fax +41 44 268 15 68
chad....@switch.ch, http://www.switch.ch

[Peter Schober]

* Shen Hongzhou <shenho...@gmail.com> [2009-07-28 10:41]:

> <1>idp:2.0.0, sp:2.0-6, ds:1.0.0
> Result: We can't get SSO between 2 SPs, that is after we login SP1, if
> we request the SP2 directly, we have to login again.

Maybe this IdP does not have the PreviousSession handler enabled.

Either way, Shibbolth is inter-institutional web single sign-on
software -- hard to imagine the project would ship Shibboleth 2.0
completely without single sign-on functionality.
-peter

[Shen Hongzhou]

Thanks for your answer!
I will check the configuration again.

Regards！

Shen

2009/7/28 Peter Schober <peter....@univie.ac.at>: