By: Ramkumar Chandrasekaran user 24 Feb 2017 at 10:43 a.m. CST

6 Responses
Ramkumar Chandrasekaran gravatar
We need a requirement to setup both IDP and SP using Gluu Server 3.0.0, so installed both shibboleth and asimba. From admin portal, we can access only inbound menu option,not able create Trust relationship from oxTrust to configure idp from outbound menu option. Regards Ramkumar.C

By Mohib Zico Account Admin 24 Feb 2017 at 12:03 p.m. CST

Mohib Zico gravatar
Couple of questions: - Are you sure that you installed Shibboleth bit during installation? You have to say 'yes' for Shibboleth when you run setup.py script. - Are you logging into system as user 'admin'?

By Michael Schwartz Account Admin 24 Feb 2017 at 12:19 p.m. CST

Michael Schwartz gravatar
yes, please provide `/install/community-edition-setup/setup.properties.last`

By Ramkumar Chandrasekaran user 24 Feb 2017 at 12:20 p.m. CST

Ramkumar Chandrasekaran gravatar
Yes, We can confirm that Shibboleth is installed and logging as admin user only. Also getting shibboleth metadata xml. But using oxtrust not able to see any option under inbound menu option in Gluu Version 3 . In Gluu Version 2.4.4.sp2 is working fine for both asimba and shibboleth. We are planning to baseline the Gluu versions to 3.x version and just wondering Gluu can act as both idp/sp. Thanks Ramkumar.C

By Ramkumar Chandrasekaran user 24 Feb 2017 at 12:26 p.m. CST

Ramkumar Chandrasekaran gravatar
Please find install information:- jetty_version=9.3.15.v20161220 install_dir=. ldif_appliance=./output/appliance.ldif ldif_attributes=./output/attributes.ldif ldap_user_home=/home/ldap accessLogConfFile=./static/openldap/accesslog.conf installCas=False setup_properties_fn=./setup.properties apache2_ssl_conf=./output/https_gluu.conf httpdCertFn=/etc/certs/httpd.crt node_version=6.9.1 idp3_dist_jar=http\://ox.gluu.org/maven/org/xdi/oxShibbolethStatic/3.0.0/oxShibbolethStatic-3.0.0.jar oxauth_static_conf_json=./output/oxauth-static-conf.json jetty_user_home_lib=/home/jetty/lib downloadWars=False jreDestinationPath=/opt/jdk1.8.0_112 ldapEncodePWCommand=/opt/opendj/bin/encode-password oxTrustCacheRefreshFolder=/var/ox/identity/cr-snapshots apache_start_script=/etc/init.d/httpd idp3_configuration_password_authn=/authn/password-authn-config.xml gluuOptSystemFolder=/opt/gluu/system ldif_site=./static/cache-refresh/o_site.ldif encoded_ldap_pw={SSHA}ana07tKoD2CI3bc6h6M/bQSAxP5rnAYn node_home=/opt/node ldapPass=kikluHC8bnv8 passport_config=/etc/gluu/conf/passport-config.json certFolder=/etc/certs defaultTrustStorePW=changeit idp3_metadata=/idp-metadata.xml passport_rs_client_jks_pass_encoded=nWZLLHO9v6NByPC/wO24ww\=\= pairwiseCalculationSalt=Jv74YuBOoVQhsaSRq9WbRxEvx scim_rp_client_jks_fn=./output/scim-rp.jks passport_rp_client_jks_fn=/etc/certs/passport-rp.jks jre_version=112 ldap_admin_port=4444 openldapSchemaFolder=/opt/gluu/schema/openldap importLdifCommand=/opt/opendj/bin/import-ldif openldapSiteUser=cn\=directory manager,o\=site ldap_backend_type=je installAsimba=True ldif_asimba=./output/asimba.ldif openldapSymasConf=./output/symas-openldap.conf openldapConfFolder=/opt/symas/etc/openldap ldif_base=./output/base.ldif openldapLogrotate=./static/openldap/openldap_logrotate idp3_configuration_saml_nameid=/saml-nameid.properties apache2_24_conf=./output/httpd_2.4.conf ldif_passport=./output/passport.ldif asimba_configuration=./output/asimba.xml ldif_people=./output/people.ldif installLdap=True jetty_user_home=/home/jetty oxauth_client_id=@!F16A.C55E.6D0B.3727!0001!19F6.7515!0008!B217.CDF7 oxTrust_log_rotation_configuration=/etc/gluu/conf/oxTrustLogRotationConfiguration.xml scim_rs_client_jks_pass_encoded=7JxNSSkF0GhMPLNXNxkzrA\=\= oxcas_config_json=./output/oxcas-config.json httpdKeyFn=/etc/certs/httpd.key oxauth_error_json=./static/oxauth/oxauth-errors.json asimbaJksFn=/etc/certs/asimbaIDP.jks gluuOptBinFolder=/opt/gluu/bin openldapBaseFolder=/opt/symas oxtrust_import_person_json=./output/oxtrust-import-person.json allowPreReleasedApplications=False jython_home=/opt/jython loadLdifCommand=/opt/opendj/bin/ldapmodify cmd_dpkg=/usr/bin/dpkg openldapLogDir=/var/log/openldap/ ldapBaseFolder=/opt/opendj gluu_python_base=/opt/gluu/python cmd_mkdir=/bin/mkdir ldif_scripts=./output/scripts.ldif distFolder=/opt/dist idp3ConfFolder=/opt/shibboleth-idp/conf oxauth_war=https\://ox.gluu.org/maven/org/xdi/oxauth-server/3.0.0/oxauth-server-3.0.0.war inumApplianceFN=F16AC55E6D0B3727000212FF34AA apache2_ssl_24_conf=./output/https_gluu.conf inumAppliance=@!F16A.C55E.6D0B.3727!0002!12FF.34AA idp3_configuration_properties=/idp.properties network=/etc/sysconfig/network node_user_home=/home/node distGluuFolder=/opt/dist/gluu idp3_configuration_services=/services.properties oxauthClient_pw=t89NLah9UX3f state=AZ idp3_configuration_ldap_properties=/ldap.properties ce_setup_zip=https\://github.com/GluuFederation/community-edition-setup/archive/version_3.0.0.zip idp3Folder=/opt/shibboleth-idp node_base=/opt/gluu/node node_initd_script=./static/system/initd/node ldif_passport_config=./output/oxpassport-config.ldif idp3ConfAuthnFolder=/opt/shibboleth-idp/conf/authn oxauth_openid_jks_fn=/etc/certs/oxauth-keys.jks outputFolder=./output os_type=redhat gluuAccessLogConf=./static/openldap/o_gluu_accesslog.conf jetty_home=/opt/jetty oxauth_rp_war=https\://ox.gluu.org/maven/org/xdi/oxauth-rp/3.0.0/oxauth-rp-3.0.0.war githubBranchName=version_3.0.0 openldapTLSCert=/etc/certs/openldap.crt templateFolder=./templates ldif_scim=./output/scim.ldif idp3_war=http\://ox.gluu.org/maven/org/xdi/oxshibbolethIdp/3.0.0/oxshibbolethIdp-3.0.0.war gluuBaseFolder=/etc/gluu inumOrgFN=F16AC55E6D0B3727000119F67515 oxauth_config_json=./output/oxauth-config.json scim_rs_client_id=@!F16A.C55E.6D0B.3727!0001!19F6.7515!0008!4EF6.732D gluu_passport_base=/opt/gluu/node/passport idp3CredentialsFolder=/opt/shibboleth-idp/credentials ldap_jmx_port=1689 default_key_algs=RS256 RS384 RS512 ES256 ES384 ES512 idpWarFullPath=/opt/dist/gluu/idp.war opensslCommand=/usr/bin/openssl ldif_idp=./output/oxidp.ldif installOxTrust=True system_profile_update=./output/system_profile ldap_port=1389 encoded_shib_jks_pw=vaB7jAxJiaowGu6IGAZg7Q\=\= orgName=AA apache2_conf=./output/httpd.conf oxidp_config_json=./output/oxidp-config.json osDefault=/etc/default openldapKeyPass=8MRN7b7lsiD4 oxBaseDataFolder=/var/ox asimba_configuration_xml=/etc/gluu/conf/asimba/asimba.xml city=AA oxVersion=3.0.0 baseInum=@!F16A.C55E.6D0B.3727 log=./setup.log asimbaJksPass=okHKtRahtfOH ox_ldap_properties=/etc/gluu/conf/ox-ldap.properties ldaps_port=1636 jython_version=2.7.0 logError=./setup_error.log openldapRootUser=cn\=directory manager,o\=gluu asimba_selector_configuration_xml=/etc/gluu/conf/asimba/asimba-selector.xml openldapTLSKey=/etc/certs/openldap.key staticIDP3FolderMetadata=./static/idp3/metadata oxTrustConfigGeneration=true oxPhotosFolder=/var/ox/photos shibJksFn=/etc/certs/shibIDP.jks os_initdaemon=systemd distAppFolder=/opt/dist/app jetty_dist=/opt/jetty-9.3 passport_rp_client_id=@!F16A.C55E.6D0B.3727!0001!19F6.7515!0008!96FD.E936 defaultTrustStoreFN=/opt/jre/jre/lib/security/cacerts ldapModifyCommand=/opt/opendj/bin/ldapmodify idp3MetadataFolder=/opt/shibboleth-idp/metadata pairwiseCalculationKey=cPaAvQbhNO6fW6YNx4gc ldif_groups=./output/groups.ldif asimba_selector_configuration=./output/asimba-selector.xml ldif_clients=./output/clients.ldif scim_rp_client_jks_pass=secret opendj_version=3.0 openldapSyslogConf=./static/openldap/openldap-syslog.conf cmd_ln=/bin/ln passport_rp_client_cert_fn=/etc/certs/passport-rp.pem httpdKeyPass=ks7BAi5XDggq oxtrust_war=https\://ox.gluu.org/maven/org/xdi/oxtrust-server/3.0.0/oxtrust-server-3.0.0.war ldap_site_binddn=cn\=directory manager,o\=site installOxAuth=True cmd_java=/opt/jre/bin/java ldif_scopes=./output/scopes.ldif savedProperties=./setup.properties.last staticIDP3FolderConf=./static/idp3/conf oxtrust_cache_refresh_json=./output/oxtrust-cache-refresh.json admin_email=support@tenant.com distTmpFolder=/opt/dist/tmp idp3LogsFolder=/opt/shibboleth-idp/logs passport_rs_client_jks_pass=rC6TBoBgI2oW cmd_jar=/opt/jre/bin/jar oxauth_openid_jks_pass=DiuWRGvwEWJd idp3WebappFolder=/opt/shibboleth-idp/webapp countryCode=US ip=10.90.78.13 opendj_ldap_binddn=cn\=directory manager installSaml=True sysemProfile=/etc/profile ldap_setup_properties=./templates/opendj-setup.properties default_openid_jks_dn_name=CN\=oxAuth CA Certificates oxtrust_config_json=./output/oxtrust-config.json openldapTLSCACert=/etc/certs/openldap.pem installJce=False ldapPassFn=/home/ldap/.pw oxTrustRemovedFolder=/var/ox/identity/removed passport_rs_client_jks_fn=/etc/certs/passport-rs.jks openldapSlapdConf=./output/slapd.conf encode_salt=mSMoislVqjA9OBMsRaXYp42L gluu_python_readme=/opt/gluu/python/libs/python.txt java_1_8_jce_zip=http\://download.oracle.com/otn-pub/java/jce/8/jce_policy-8.zip hostname=idp.tenant.com jetty_base=/opt/gluu/jetty cmd_chmod=/bin/chmod inumOrg=@!F16A.C55E.6D0B.3727!0001!19F6.7515 passport_rp_client_jks_pass=secret asimba_conf_folder=/etc/gluu/conf/asimba allowDeprecatedApplications=False oxEncodePWCommand=/opt/gluu/bin/encode.py encoded_ox_ldap_pw=hYuZEdD8hHyQ8xEopEgKpQ\=\= cas_properties=./output/cas.properties openldapSetupAccessLog=False cmd_rpm=/bin/rpm cas_war=http\://ox.gluu.org/maven/org/xdi/ox-cas-server-webapp/3.0.0/ox-cas-server-webapp-3.0.0.war idp3LibFolder=/opt/shibboleth-idp/lib cmd_keytool=/opt/jre/bin/keytool ldap_binddn=cn\=directory manager,o\=gluu installHttpd=True passport_rs_client_id=@!F16A.C55E.6D0B.3727!0001!19F6.7515!0008!BEE0.AAAE scim_rp_client_id=@!F16A.C55E.6D0B.3727!0001!19F6.7515!0008!9283.E75E asimba_war=http\://ox.gluu.org/maven/org/asimba/asimba-wa/3.0.0/asimba-wa-3.0.0.war cmd_chgrp=/bin/chgrp passport_rp_client_cert_alg=RS512 apache_version=2.4 configFolder=/etc/gluu/conf openldapBinFolder=/opt/symas/bin scim_rs_client_jks_pass=6z6h2XlElME7 jre_home=/opt/jre ldap_hostname=localhost gluuOptPythonFolder=/opt/gluu/python oxauthClient_encoded_pw=Y+ezvBON6FcMO3o0xZcGLw\=\= encode_script=/opt/gluu/bin/encode.py shibJksPass=yfn5wl4ZGQN0 oxasimba_config_json=./output/oxasimba-config.json cmd_chown=/bin/chown scim_rs_client_jks_fn=/etc/certs/scim-rs.jks etc_hosts=/etc/hosts idp3_cml_keygenerator=http\://ox.gluu.org/maven/org/xdi/oxShibbolethKeyGenerator/3.0.0/oxShibbolethKeyGenerator-3.0.0.jar asimba_properties=./output/asimba.properties gluuOptFolder=/opt/gluu installPassport=False openldapRootSchemaFolder=/opt/gluu/schema rsyslogUbuntuInitFile=./static/system/ubuntu/rsyslog oxauth_openid_jwks_fn=/etc/certs/oxauth-keys.json ldif_configuration=./output/configuration.ldif etc_hostname=/etc/hostname installOxAuthRP=False Thanks Ramkumar.C

By Mohib Zico Account Admin 24 Feb 2017 at 1:01 p.m. CST

Mohib Zico gravatar
Couldn't reproduce the issue. [Here](https://youtu.be/nFqpj4u9Yb8) is the screencast.

By Ramkumar Chandrasekaran user 27 Feb 2017 at 11:59 a.m. CST

Ramkumar Chandrasekaran gravatar
Thanks Mohib. It is working only if we mention the below configuration in setup.properties during deployment using property file for installing both Shibboleth\Asimba. shibboleth_version=v3 installSaml=True installAsimba=True installJce=True Without "shibboleth_version=v3", IDP is not showing properly in oxTrust portal. Hope this will be useful for others.