Difference between revisions of "AbfabInstall"
(→Setup Abfab) |
(→Setup Abfab) |
||
Line 25: | Line 25: | ||
** [https://wiki.moonshot.ja.net/pages/viewpage.action?pageId=4030707 Install mod_moonshot] | ** [https://wiki.moonshot.ja.net/pages/viewpage.action?pageId=4030707 Install mod_moonshot] | ||
− | + | Configure mod_moonshot to [https://wiki.moonshot.ja.net/display/Moonshot/Configure+a+Linux+Server+to+Connect+to+an+RP+Proxy connect to an ABFAB compatible server]. | |
+ | |||
+ | Finally, mod_moonshot also needs Shibboleth service configuration files located in /etc/shibboleth. | ||
+ | |||
+ | On RHEL, CentOS or SE Linux distributions, shibd is installed with moonshot libraries, so the files just need to be configured. | ||
+ | |||
+ | On Ubuntu 12.04 or 14.04, you need to install mod_shib installed, and disable it. | ||
+ | apt-get install mod_shib | ||
+ | a2dismod shib2 | ||
After these steps, you should have mod_moonshot for Apache up and running. | After these steps, you should have mod_moonshot for Apache up and running. |
Revision as of 16:37, 9 March 2015
Setup Abfab
Configure Apache HTTPD for mod_moonshot
Follow the steps outlined at: Running Keystone in HTTPD.
mod_moonshot (aka mod_auth_gssapi) is compatible with Apache HTTPD server v2.22, which can be installed on the following Linux flavours.
Click on the links below for instructions on how to install it.
- Ubuntu 12.04
- Ubuntu 14.04
- RedHat Enterprise Linux 6 / CentOS 6 / SE Linux 6
Configure mod_moonshot to connect to an ABFAB compatible server.
Finally, mod_moonshot also needs Shibboleth service configuration files located in /etc/shibboleth.
On RHEL, CentOS or SE Linux distributions, shibd is installed with moonshot libraries, so the files just need to be configured.
On Ubuntu 12.04 or 14.04, you need to install mod_shib installed, and disable it.
apt-get install mod_shib a2dismod shib2
After these steps, you should have mod_moonshot for Apache up and running.
In the keystone Apache site file, locate the virtual host entry and add the following entries for OpenID Connect:
<VirtualHost *:5000> ... <LocationMatch /v3/OS-FEDERATION/identity_providers/*?/protocols/abfab/auth> AuthType Negotiate Require valid-user </LocationMatch> </VirtualHost>