Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision | |||
|
documentation:2.1:renater [2019/09/25 15:20] maxbes [Metadata import] |
documentation:2.1:renater [2019/10/08 15:39] (current) coudot |
||
|---|---|---|---|
| Line 21: | Line 21: | ||
| ==== Metadata import ==== | ==== Metadata import ==== | ||
| - | You now need to import IDP metadata in LL::NG configuration. Use the ''importMetadata'' script that should be installed in /usr/share/lemonldap-ng/bin. You need to select the correct metadata bundle proposed by Renater: [[https://services.renater.fr/federation/technique/metadata]], for example: | + | You now need to import IDP metadata in LL::NG configuration. Use the ''importMetadata'' script that should be installed in /usr/share/lemonldap-ng/bin. You need to select the correct metadata bundle proposed by Renater: [[https://services.renater.fr/federation/technique/metadata]]. |
| - | <code> | ||
| - | /usr/share/lemonldap-ng/bin/importMetadata -m https://metadata.federation.renater.fr/renater/main/main-idps-renater-metadata.xml -r -i "idp-renater-" -s "sp-renater-" | ||
| - | </code> | ||
| - | |||
| - | <note important>You need to add this in cron to refresh metadata into LL::NG configuration.</note> | ||
| - | If you need too customize some settings of the script, copy it and edit configuration: | + | For Renater, you need to customize some settings of the script, copy it and edit configuration: |
| <code> | <code> | ||
| - | cp /usr/share/lemonldap-ng/bin/importMetadata /usr/share/lemonldap-ng/bin/importMetadataCustom | + | cp /usr/share/lemonldap-ng/bin/importMetadata /usr/share/lemonldap-ng/bin/importMetadataRenater |
| - | vi /usr/share/lemonldap-ng/bin/importMetadataCustom | + | vi /usr/share/lemonldap-ng/bin/importMetadataRenater |
| </code> | </code> | ||
| Line 72: | Line 67: | ||
| }; | }; | ||
| </file> | </file> | ||
| + | |||
| + | Then run the script: | ||
| + | <code> | ||
| + | /usr/share/lemonldap-ng/bin/importMetadataRenater -m https://metadata.federation.renater.fr/renater/main/main-idps-renater-metadata.xml -r -i "idp-renater-" -s "sp-renater-" | ||
| + | </code> | ||
| + | |||
| + | <note important>You need to add this in cron to refresh metadata into LL::NG configuration.</note> | ||
| ==== Add your SP into the federation ==== | ==== Add your SP into the federation ==== | ||
| Line 86: | Line 88: | ||
| <note important>If your LL::NG server will act as SP and IDP inside Renater federation, you need to set the advanced parameter "Override Entity ID for IDP". Indeed, Renater do not allow to register a SP and an IDP with the same entityID.</note> | <note important>If your LL::NG server will act as SP and IDP inside Renater federation, you need to set the advanced parameter "Override Entity ID for IDP". Indeed, Renater do not allow to register a SP and an IDP with the same entityID.</note> | ||
| + | |||
| ==== Metadata import ==== | ==== Metadata import ==== | ||
| - | You now need to import SP metadata in LL::NG configuration. Use the ''importMetadata'' script that should be installed in /usr/share/lemonldap-ng/bin. You need to select the correct metadata bundle proposed by Renater: [[https://services.renater.fr/federation/technique/metadata]], for example: | + | You now need to import SP metadata in LL::NG configuration. Use the ''importMetadata'' script that should be installed in /usr/share/lemonldap-ng/bin. You need to select the correct metadata bundle proposed by Renater: [[https://services.renater.fr/federation/technique/metadata]]. |
| + | For Renater, you may need to customize some settings of the script, copy it and edit configuration: | ||
| <code> | <code> | ||
| - | /usr/share/lemonldap-ng/bin/importMetadata -m https://metadata.federation.renater.fr/renater/main/main-sps-renater-metadata.xml -r -i "idp-renater" -s "sp-renater" | + | cp /usr/share/lemonldap-ng/bin/importMetadata /usr/share/lemonldap-ng/bin/importMetadataRenater |
| - | </code> | + | vi /usr/share/lemonldap-ng/bin/importMetadataRenater |
| - | + | ||
| - | <note important>You need to add this in cron to refresh metadata into LL::NG configuration.</note> | + | |
| - | + | ||
| - | If you need too customize some settings of the script, copy it and edit configuration: | + | |
| - | <code> | + | |
| - | cp /usr/share/lemonldap-ng/bin/importMetadata /usr/share/lemonldap-ng/bin/importMetadataCustom | + | |
| - | vi /usr/share/lemonldap-ng/bin/importMetadataCustom | + | |
| </code> | </code> | ||
| Line 118: | Line 115: | ||
| }; | }; | ||
| </file> | </file> | ||
| + | |||
| + | Then run the script: | ||
| + | <code> | ||
| + | /usr/share/lemonldap-ng/bin/importMetadataRenater -m https://metadata.federation.renater.fr/renater/main/main-sps-renater-metadata.xml -r -i "idp-renater" -s "sp-renater" | ||
| + | </code> | ||
| + | |||
| + | <note important>You need to add this in cron to refresh metadata into LL::NG configuration.</note> | ||
| ==== Add your IDP into the federation ==== | ==== Add your IDP into the federation ==== | ||
| Go to [[https://federation.renater.fr/registry]] and register your IDP. | Go to [[https://federation.renater.fr/registry]] and register your IDP. | ||