Shibboleth - apache_mod_shib2_apache2.xml

General steps to install a Shibboleth SP for Apache2:

sudo apt-get install apache2 ntp libapache2-mod-shib2
sudo a2enmod ssl
sudo a2enmod shib2
sudo a2ensite default-ssl
sudo shib-keygen -h testsp.site.com

On Apache2 SSL(:443) VHOST protect resource requiring Shibboleth authentication:

<Location /my-service/>
    AuthType shibboleth
    ShibRequestSetting requireSession 1
    Require valid-user
</Location>

The /etc/shibboleth/shibboleth2.xml file needs to be adjusted with the IdP configuration

The /etc/shibboleth/attribute-map.xml file needs to be adjusted to allow mapping to certain LDAP attributes

There are many other steps not covered above involving both SP and IdP


Sources:

  • https://help.it.ox.ac.uk/shibboleth/shibsp-apache-howto