Rich Graves
2014-08-26 15:42:26 UTC
I've created a CentOS 6 demo/training VM preconfigured with current Shibboleth IdP, SP, OpenLDAP, MCB, and Duo 2-factor:
https://www.dropbox.com/sh/8f3c7301jnxluwq/AADngyuogkrs3qcWRhTdq568a?dl=0
It's in OVF format, so should work in major virtualization environments. Credentials for the local root password and the various Web/LDAP users are in the README. Yes, at 2GB it's fairly large, to accommodate Firefox and various debugging and build tools. I'll trim that down in a later version.
I started with the excellent Internet2 installfest instructions, then made a few production-ish changes: Apache front end (allows privilege separation and SP demo), firewall, SSL ciphers, a full complement of HTTP security headers including Content-Security-Policy (alas both Shibboleth and Duo require "unsafe-inline"), etc.
Please let me know what I've done that's dumb.
https://www.dropbox.com/sh/8f3c7301jnxluwq/AADngyuogkrs3qcWRhTdq568a?dl=0
It's in OVF format, so should work in major virtualization environments. Credentials for the local root password and the various Web/LDAP users are in the README. Yes, at 2GB it's fairly large, to accommodate Firefox and various debugging and build tools. I'll trim that down in a later version.
I started with the excellent Internet2 installfest instructions, then made a few production-ish changes: Apache front end (allows privilege separation and SP demo), firewall, SSL ciphers, a full complement of HTTP security headers including Content-Security-Policy (alas both Shibboleth and Duo require "unsafe-inline"), etc.
Please let me know what I've done that's dumb.
--
To unsubscribe from this list send an email to users-unsubscribe-***@public.gmane.org
To unsubscribe from this list send an email to users-unsubscribe-***@public.gmane.org