By: Jay Kumar user 16 Jan 2018 at 7:55 a.m. CST

7 Responses
Jay Kumar gravatar
Hi Gluu team, We need to synchronize external IDP(jumpcloud) with our IDP (Gluu). So, we followed Gluu document (https://gluu.org/docs/ce/authn-guide/inbound-saml-passport/) and configured the passport manually, each steps mentioned on this doc are applied successfully. We added new onboarding IdP in the /etc/gluu/conf/passport-saml-config.json file and restarted teh passport. But we are not able to access the metadata at the Passport endpoint in the following path (https://<hostname>/passport/auth/meta/idp/<your-IDP-name-from-passport-saml-config.json>), we are getting 503 HTTP error. Also, we are not able to find any metadata as an XML file on our Gluu setup server at the following path: ...<path to gluu server >/opt/gluu/node/passport/server/idp-metadata. Please suggest us what could be missing and why we are getting 503 error on the passport endpoint for IdP metadata. Thank you, Jay Kumar

By Mohib Zico Account Admin 16 Jan 2018 at 8:06 a.m. CST

Mohib Zico gravatar
Hi Jay, I will suggest you to use Gluu Server [v3.1.2](https://repo.gluu.org/ubuntu/pool/main/xenial-devel/gluu-server-3.1.2_1-2~xenial+Ub16.04_amd64.deb); we are going to publish it very soon. Passport is mostly configured there so you don't need to run manual steps.

By Aliaksandr Samuseu staff 16 Jan 2018 at 8:16 a.m. CST

Aliaksandr Samuseu gravatar
Hi, Jay. What Zico suggests is correct, still one thing to note here: the metada link should be like this `https://<hostname>/passport/auth/meta/idp/<your-IDP-name-from-passport-saml-config>` I.e. no `.json` suffix at the end. It needs to be corrected in the doc.

By Jay Kumar user 16 Jan 2018 at 8:40 a.m. CST

Jay Kumar gravatar
Hello Team, Thanks for your suggestion. Actually we can not identify <your-IDP-name-from-passport-saml-config> in our passport-saml-config.json file. As per the sample IDP configuration is provided below: what will be the IdP name from the below passport-saml-config.json file. {"idp1": {"entryPoint": "https://idp.example.com/idp/profile/SAML2/POST/SSO", "issuer": "urn:test:example", "identifierFormat": "urn:oasis:names:tc:SAML:2.0:nameid-format:transient", "authnRequestBinding": "HTTP-POST", "additionalAuthorizeParams": "<Some additinal params json>", "skipRequestCompression": "true", "cert":"MIIDbDCCAlQCCQCuwqx2PNP...........YsMw==",//single line with out space and \n (importatnt) "reverseMapping": { "email" : "email", "username": "urn:oid:0.9.2342.19200300.100.1.1", "displayName": "urn:oid:2.16.840.1.113730.3.1.241", "id": "urn:oid:0.9.2342.19200300.100.1.1", "name": "urn:oid:2.5.4.42", "givenName": "urn:oid:2.5.4.42", "familyName": "urn:oid:2.5.4.4", "provider" :"issuer" } } } Please suggest.

By Mohib Zico Account Admin 17 Jan 2018 at 1:37 a.m. CST

Mohib Zico gravatar
Suggestion is... install and try to configure 3.1.2. :-)

By Jay Kumar user 17 Jan 2018 at 8:12 a.m. CST

Jay Kumar gravatar
Hi Mohib, When we are installing the latest Gluu CE 3.1.2 using the below mentioned command on our Ubuntu 16.04 server, it gives an error: **command**: apt-get install gluu-server-3.1.2 **error**: Reading package lists... Done Building dependency tree Reading state information... Done E: Unable to locate package gluu-server-3.1.2 E: Couldn't find any package by glob 'gluu-server-3.1.2' E: Couldn't find any package by regex 'gluu-server-3.1.2' Can you please let us know what could be missing here? Thanks, Jay Kumar

By Mohib Zico Account Admin 17 Jan 2018 at 8:21 a.m. CST

Mohib Zico gravatar
you just need to run dpkg -ivh deb package name ( if you want to run any deb or rpm package 'directly' [other than repo]; you have to use dpkg or rpm command ); not apt-get...

By Jay Kumar user 18 Jan 2018 at 11:16 a.m. CST

Jay Kumar gravatar
Hi Gluu team, We have installed the latest deb package of Gluu server with this command: dpkg -i gluu-server-3.1.2_1-2_xenial+Ub16.04_amd64.deb (Because this command suggested by Mohib was not working dpkg -ivh, gives error unknown option -v same with -h switch) But after successful unpacking & installation when we are trying to start the Gluu server for login into the container. It also gives an error, see below: Job for gluu-server-3.1.2.service failed because the control process exited with error code. See "systemctl status gluu-server-3.1.2.service" and "journalctl -xe" for details. Can you please suggest what could be possibly missing here? Thank you, Jay Kumar