Shibboleth Native SP Clustering

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

Shibboleth Native SP Clustering

avinash92c
I am trying to setup a clustering solution for NativeSP using odbc using this
https://wiki.shibboleth.net/confluence/display/SHIB2/NativeSPODBCStorageService

However it doesn't seem to work.I'm not sure what i'm misconfiguring.

Here is my setup
Server 1 : shibboleth SP - EntityID s1.example.org
Server 2 : shibboleth SP - EntityID s2.example.org
Server 3 : Shib IDP
Server 4: Nginx Load Balancer

Shibboleth2.xml

<OutOfProcess logger="shibd.logger">

        <Extensions>
            <Library path="odbc-store.so" fatal="true"/>
        </Extensions>

    </OutOfProcess>

  <StorageService type="ODBC" id="db" cleanupInterval="900">
        <ConnectionString>
        DRIVER=MySQL;SERVER=DBIP;PORT=3306;UID=USERID;PWD=Password;DATABASE=shibidp;APP=Shibboleth
        </ConnectionString>
    </StorageService>
    <SessionCache type="StorageService" StorageService="db" cacheAssertions="false"
                  cacheTimeout="3600" inprocTimeout="900" cleanupInterval="900"/>
    <ReplayCache StorageService="db"/>
    <ArtifactMap StorageService="db" artifactTTL="180"/>

       
          <SSO entityID="https://idp.org/idp/shibboleth" relayState="ss:db"
                 discoveryProtocol="SAMLDS" discoveryURL="https://ds.example.org/DS/WAYF">
              SAML2 SAML1
            </SSO>


I have several questions.,
1) does it have to be SessionInitiator used or would SSO binding to relaystate work?
2) should both SP have same entityID. i tried this and it didnt work *(Obviously)

Can anyone help me out with a sample or something. I've basically read the whole article several times and i cant figure out what i'm missing.

Shibboleth SP Version 2.6.0