| Info |
|---|
Until the MIT Identity Providers know about your application, they won't release information about an authenticated user to your server. Each Touchstone enabled application running on a server needs to be registered with the IdPs. |
| Tip |
|---|
To register your application server with the MIT IdPs sendmail send mail to touchstone-support with the following information: - A contact email address. We strongly recommend that this be an email list rather than an indivdual's persoanl personal email address.
- The server or host name. If you have multiple applications installed on the same server, you will actually need to register each application's provider ID. See below for more details.
- Organization name. This is typically the name of the MIT department, lab, or center running the application.
- Organization URL. The URL that provides some basic information about your department, lab, or center.
|
We also encourage you to send the following optional information with your registration information: - The application URL. The actual URL which will be used to access your application.
- Your server platform. (RHEL 4, RHEL 5, Windows, Debian, Solaris, ...)
The IdP doesn't really need to know your hostname. It does need to know the Provider ID that uniquely identifies your application. Typical MIT installations that use the gen-shib.sh script (see above) hide this detail from you so that we simply need the hostname. If you want to learn more about provder ID naming please see EntityNamingat the Internet2 wiki site. A single Shibboleth SP installation is designed to support multiple applications installed on that server, but there are different deployment and configuration strategies to support multiple applications. At MIT we recommend that each application be configured to use a separate Apache vhost, in addtion to simply creating additional ProviderIDs for each application. More information is available here: |