Re: [openstack-dev] Need help in configuring keystone

Akshik DBK Fri, 27 Feb 2015 09:24:08 -0800

Hi Marco,
Thanks for responding, Ive cleared the log file and have restarted the shibd 
service.
the metadata file got created, i've attached the log file and metadata file as 
well.
Regards,Akshik


Date: Fri, 27 Feb 2015 15:12:39 +0100
From: [email protected]
To: [email protected]
Subject: Re: [openstack-dev] Need help in configuring keystone

Hi Akshik,
 
the metadata error is in your SP, if the error was on testshib you
should not be redirected back after the login. Maybe there is a configuration
problem with shibboleth. Try to restart the service and look at shibboleth logs.
Check also the metadata of testshib are downloaded correctly because from the 
error
it seems you have not the metadata of testshib.
 
Cheers,
Marco
 
On Fri, Feb 27, 2015 at 06:39:30PM +0530, Akshik DBK wrote:
> Hi Marek ,
> I've registered with testshib, this is my keystone-apache-error.log log i get 
> [error] [client 121.243.33.212] No MetadataProvider available., referer: 
> https://idp.testshib.org/idp/profile/SAML2/Redirect/SSO
> From: [email protected]
> To: [email protected]
> Date: Fri, 27 Feb 2015 15:56:57 +0530
> Subject: [openstack-dev] Need help in configuring keystone
> 
> 
> 
> 
> Hi I'm new to SAML, trying to integrate keystone with SAML, Im using Ubuntu 
> 12.04 with Icehouse,im following http://docs.openstack.org/developer/k...when 
> im trying to configure keystone with two idp,when i access 
> https://MYSERVER:5000/v3/OS-FEDERATIO...it gets redirected to testshib.org , 
> it prompts for username and password when the same is given im 
> gettingshibsp::ConfigurationException at ( 
> https://MYSERVER:5000/Shibboleth.sso/... ) No MetadataProvider available.here 
> is my shibboleth2.xml content<SPConfig 
> xmlns="urn:mace:shibboleth:2.0:native:sp:config"
>     xmlns:conf="urn:mace:shibboleth:2.0:native:sp:config"
>     xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
>     xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"    
>     xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"
>     clockSkew="180">
> 
>     <ApplicationDefaults entityID="https://MYSERVER:5000/Shibboleth";>
>         <Sessions lifetime="28800" timeout="3600" checkAddress="false" 
> relayState="ss:mem" handlerSSL="false">
>             <SSO entityID="https://idp.testshib.org/idp/shibboleth"; 
> ECP="true">
>                 SAML2 SAML1
>             </SSO>
> 
>             <Logout>SAML2 Local</Logout>
> 
>             <Handler type="MetadataGenerator" Location="/Metadata" 
> signing="false"/>
>             <Handler type="Status" Location="/Status" />
>             <Handler type="Session" Location="/Session" 
> showAttributeValues="false"/>
>             <Handler type="DiscoveryFeed" Location="/DiscoFeed"/>
>         </Sessions>
> 
>         <Errors supportContact="root@localhost"
>             logoLocation="/shibboleth-sp/logo.jpg"
>             styleSheet="/shibboleth-sp/main.css"/>
> 
>         <AttributeExtractor type="XML" validate="true" 
> path="attribute-map.xml"/>
>         <AttributeResolver type="Query" subjectMatch="true"/>
>         <AttributeFilter type="XML" validate="true" 
> path="attribute-policy.xml"/>
>         <CredentialResolver type="File" key="sp-key.pem" 
> certificate="sp-cert.pem"/>
> 
>         <ApplicationOverride id="idp_1" 
> entityID="https://MYSERVER:5000/Shibboleth";>
> 
>             <Sessions lifetime="28800" timeout="3600" checkAddress="false"
>             relayState="ss:mem" handlerSSL="false">
>                 <SSO 
> entityID="https://portal4.mss.internalidp.com/idp/shibboleth"; ECP="true">
>                     SAML2 SAML1
>                 </SSO>
>                 <Logout>SAML2 Local</Logout>
>             </Sessions>
> 
>             <MetadataProvider type="XML" 
> uri="https://portal4.mss.internalidp.com/idp/shibboleth";
>              backingFilePath="/tmp/tata.xml" reloadInterval="180000" />
>         </ApplicationOverride>
> 
>         <ApplicationOverride id="idp_2" 
> entityID="https://MYSERVER:5000/Shibboleth";>
>             <Sessions lifetime="28800" timeout="3600" checkAddress="false"
>             relayState="ss:mem" handlerSSL="false">
>                 <SSO entityID="https://idp.testshib.org/idp/shibboleth"; 
> ECP="true">
>                     SAML2 SAML1
>                 </SSO>
> 
>                 <Logout>SAML2 Local</Logout>
>             </Sessions>
> 
>             <MetadataProvider type="XML" 
> uri="https://idp.testshib.org/idp/shibboleth";  
>             backingFilePath="/tmp/testshib.xml" reloadInterval="180000"/>
>         </ApplicationOverride>
>     </ApplicationDefaults>
> 
>     <SecurityPolicyProvider type="XML" validate="true" 
> path="security-policy.xml"/>
>     <ProtocolProvider type="XML" validate="true" reloadChanges="false" 
> path="protocols.xml"/>
> </SPConfig>here is my wsgi-keystoneWSGIScriptAlias /keystone/main  
> /var/www/cgi-bin/keystone/main
> WSGIScriptAlias /keystone/admin  /var/www/cgi-bin/keystone/admin
> 
> <Location "/keystone">
> # NSSRequireSSL
> SSLRequireSSL
> Authtype none
> </Location>
> 
> <Location /Shibboleth.sso>
>     SetHandler shib
> </Location>
> 
> <Location /v3/OS-FEDERATION/identity_providers/idp_1/protocols/saml2/auth>
>     ShibRequestSetting requireSession 1
>     ShibRequestSetting applicationId idp_1
>     AuthType shibboleth
>     ShibRequireAll On
>     ShibRequireSession On
>     ShibExportAssertion Off
>     Require valid-user
> </Location>
> 
> <Location /v3/OS-FEDERATION/identity_providers/idp_2/protocols/saml2/auth>
>     ShibRequestSetting requireSession 1
>     ShibRequestSetting applicationId idp_2
>     AuthType shibboleth
>     ShibRequireAll On
>     ShibRequireSession On
>     ShibExportAssertion Off
>     Require valid-user
> </Location>                                     
> 
> __________________________________________________________________________
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: [email protected]?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev             
>                           
 
> __________________________________________________________________________
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: [email protected]?subject:unsubscribe
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
 
 
 

__________________________________________________________________________
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: [email protected]?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

testshib.xml
Description: XML document

2015-02-27 22:36:37 INFO Shibboleth.Listener : listener service shutting down
2015-02-27 22:36:38 INFO Shibboleth.Config : shibboleth 2.4.3 library shutting 
down
2015-02-27 22:36:38 INFO Shibboleth.Config : reload thread finished
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default::getHeaders::Application)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default/Artifact/SOAP::run::SAML2Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default/SAML2/POST)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default/SAML2/POST-SimpleSign)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default/SAML2/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default/SAML2/ECP)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default/SAML/POST)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default/SAML/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default/Login::run::SAML2SI)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default/Login::run::Shib1SI)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default/SLO/SOAP)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default/SLO/Redirect)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default/SLO/POST)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default/SLO/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default/Logout::run::SAML2LI)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default/Logout::run::LocalLI)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default/Metadata)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default/Status)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (default/DiscoFeed)
2015-02-27 22:36:38 INFO Shibboleth.AttributeFilter : reload thread finished
2015-02-27 22:36:38 INFO Shibboleth.AttributeExtractor.XML : reload thread 
finished
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_1::getHeaders::Application)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_1/Artifact/SOAP::run::SAML2Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_1/SAML2/POST)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_1/SAML2/POST-SimpleSign)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_1/SAML2/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_1/SAML2/ECP)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_1/SAML/POST)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_1/SAML/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_1/Login::run::SAML2SI)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_1/Login::run::Shib1SI)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_1/SLO/SOAP)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_1/SLO/Redirect)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_1/SLO/POST)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_1/SLO/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_1/Logout::run::SAML2LI)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_1/Logout::run::LocalLI)
2015-02-27 22:36:38 INFO OpenSAML.MetadataProvider.XML : reload thread finished
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_2::getHeaders::Application)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_2/Artifact/SOAP::run::SAML2Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_2/SAML2/POST)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_2/SAML2/POST-SimpleSign)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_2/SAML2/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_2/SAML2/ECP)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_2/SAML/POST)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_2/SAML/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_2/Login::run::SAML2SI)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_2/Login::run::Shib1SI)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_2/SLO/SOAP)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_2/SLO/Redirect)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_2/SLO/POST)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_2/SLO/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_2/Logout::run::SAML2LI)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (idp_2/Logout::run::LocalLI)
2015-02-27 22:36:38 INFO OpenSAML.MetadataProvider.XML : reload thread finished
2015-02-27 22:36:38 INFO Shibboleth.SecurityPolicyProvider.XML : reload thread 
finished
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (find::StorageService::SessionCache)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (remove::StorageService::SessionCache)
2015-02-27 22:36:38 INFO Shibboleth.Listener : unregistered remoted message 
endpoint (touch::StorageService::SessionCache)
2015-02-27 22:36:38 INFO XMLTooling.StorageService : cleanup thread finished
2015-02-27 22:36:38 INFO XMLTooling.Config : xmltooling 1.4.2 library shutdown 
complete
2015-02-27 22:36:38 INFO OpenSAML.Config : opensaml 2.4.3 library shutdown 
complete
2015-02-27 22:36:38 INFO Shibboleth.Config : shibboleth 2.4.3 library shutdown 
complete
2015-02-27 22:36:38 INFO Shibboleth.Config : Shibboleth SP Version 2.4.3
2015-02-27 22:36:38 INFO Shibboleth.Config : Library versions: log4cpp 1.0, 
Xerces-C 3.1.1, XML-Security-C 1.6.1, XMLTooling-C 1.4.2, OpenSAML-C 2.4.3, 
Shibboleth 1.4.3
2015-02-27 22:36:38 INFO Shibboleth.Config : building ListenerService of type 
UnixListener...
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (set::RelayState)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (get::RelayState)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (set::PostData)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (get::PostData)
2015-02-27 22:36:38 INFO Shibboleth.Config : no StorageService plugin(s) 
installed, using (mem) in-memory instance
2015-02-27 22:36:38 INFO Shibboleth.Config : no ReplayCache specified, using 
arbitrary StorageService instance
2015-02-27 22:36:38 INFO Shibboleth.Config : no ArtifactMap specified, building 
in-memory ArtifactMap...
2015-02-27 22:36:38 INFO Shibboleth.Config : no SessionCache specified, using 
StorageService-backed instance
2015-02-27 22:36:38 INFO Shibboleth.SessionCache : bound to arbitrary 
StorageService
2015-02-27 22:36:38 INFO Shibboleth.SessionCache : StorageService for 'lite' 
use not set, using standard StorageService
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (find::StorageService::SessionCache)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (remove::StorageService::SessionCache)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (touch::StorageService::SessionCache)
2015-02-27 22:36:38 INFO Shibboleth.Config : building SecurityPolicyProvider of 
type XML...
2015-02-27 22:36:38 INFO Shibboleth.SecurityPolicyProvider.XML : loaded XML 
resource (/etc/shibboleth/security-policy.xml)
2015-02-27 22:36:38 INFO OpenSAML.SecurityPolicyRule.Conditions : building 
SecurityPolicyRule of type Audience
2015-02-27 22:36:38 INFO OpenSAML.SecurityPolicyRule.Conditions : building 
SecurityPolicyRule of type Audience
2015-02-27 22:36:38 INFO OpenSAML.SecurityPolicyRule.Conditions : building 
SecurityPolicyRule of type Ignore
2015-02-27 22:36:38 INFO OpenSAML.SecurityPolicyRule.Conditions : building 
SecurityPolicyRule of type Ignore
2015-02-27 22:36:38 INFO OpenSAML.SecurityPolicyRule.Conditions : building 
SecurityPolicyRule of type Ignore
2015-02-27 22:36:38 INFO Shibboleth.Config : building ProtocolProvider of type 
XML...
2015-02-27 22:36:38 INFO Shibboleth.ProtocolProvider.XML : loaded XML resource 
(/etc/shibboleth/protocols.xml)
2015-02-27 22:36:38 INFO Shibboleth.SecurityPolicyProvider.XML : reload thread 
started...running when signaled
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring SSO 
initiation for protocol (SAML2)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding SessionInitiator of 
type (SAML2) to chain (/Login)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring 
ArtifactResolution endpoints for protocol (SAML2)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
ArtifactResolutionService for Binding 
(urn:oasis:names:tc:SAML:2.0:bindings:SOAP) at (/Artifact/SOAP)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default/Artifact/SOAP::run::SAML2Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring SSO 
endpoints for protocol (SAML2)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
AssertionConsumerService for Binding 
(urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST) at (/SAML2/POST)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default/SAML2/POST)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
AssertionConsumerService for Binding 
(urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign) at 
(/SAML2/POST-SimpleSign)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default/SAML2/POST-SimpleSign)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
AssertionConsumerService for Binding 
(urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact) at (/SAML2/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default/SAML2/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
AssertionConsumerService for Binding 
(urn:oasis:names:tc:SAML:2.0:bindings:PAOS) at (/SAML2/ECP)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default/SAML2/ECP)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring SSO 
initiation for protocol (SAML1)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding SessionInitiator of 
type (Shib1) to chain (/Login)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring SSO 
endpoints for protocol (SAML1)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
AssertionConsumerService for Binding 
(urn:oasis:names:tc:SAML:1.0:profiles:browser-post) at (/SAML/POST)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default/SAML/POST)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
AssertionConsumerService for Binding 
(urn:oasis:names:tc:SAML:1.0:profiles:artifact-01) at (/SAML/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default/SAML/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default/Login::run::SAML2SI)
2015-02-27 22:36:38 INFO XMLTooling.StorageService : cleanup thread 
started...running every 900 seconds
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default/Login::run::Shib1SI)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring Logout 
initiation for protocol (SAML2)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding LogoutInitiator of 
type (SAML2) to chain (/Logout)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring Logout 
endpoints for protocol (SAML2)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding SingleLogoutService 
for Binding (urn:oasis:names:tc:SAML:2.0:bindings:SOAP) at (/SLO/SOAP)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default/SLO/SOAP)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding SingleLogoutService 
for Binding (urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect) at 
(/SLO/Redirect)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default/SLO/Redirect)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding SingleLogoutService 
for Binding (urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST) at (/SLO/POST)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default/SLO/POST)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding SingleLogoutService 
for Binding (urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact) at 
(/SLO/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default/SLO/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring Logout 
initiation for protocol (Local)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding LogoutInitiator of 
type (Local) to chain (/Logout)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default/Logout::run::SAML2LI)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default/Logout::run::LocalLI)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default/Metadata)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default/Status)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default/DiscoFeed)
2015-02-27 22:36:38 INFO Shibboleth.DiscoveryFeed : feed files will be cached 
in /var/run/shibboleth/
2015-02-27 22:36:38 CRIT Shibboleth.Application : no MetadataProvider 
available, configuration is probably unusable
2015-02-27 22:36:38 INFO Shibboleth.Application : no TrustEngine specified or 
installed, using default chain {ExplicitKey, PKIX}
2015-02-27 22:36:38 INFO Shibboleth.Application : building AttributeExtractor 
of type XML...
2015-02-27 22:36:38 INFO Shibboleth.AttributeExtractor.XML : loaded XML 
resource (/etc/shibboleth/attribute-map.xml)
2015-02-27 22:36:38 INFO Shibboleth.AttributeExtractor.XML : creating mapping 
for Attribute urn:mace:dir:attribute-def:eduPersonPrincipalName
2015-02-27 22:36:38 INFO Shibboleth.AttributeExtractor.XML : creating mapping 
for Attribute urn:oid:1.3.6.1.4.1.5923.1.1.1.6
2015-02-27 22:36:38 INFO Shibboleth.AttributeExtractor.XML : creating mapping 
for Attribute urn:mace:dir:attribute-def:eduPersonScopedAffiliation
2015-02-27 22:36:38 INFO Shibboleth.AttributeExtractor.XML : creating mapping 
for Attribute urn:oid:1.3.6.1.4.1.5923.1.1.1.9
2015-02-27 22:36:38 INFO Shibboleth.AttributeExtractor.XML : creating mapping 
for Attribute urn:mace:dir:attribute-def:eduPersonAffiliation
2015-02-27 22:36:38 INFO Shibboleth.AttributeExtractor.XML : creating mapping 
for Attribute urn:oid:1.3.6.1.4.1.5923.1.1.1.1
2015-02-27 22:36:38 INFO Shibboleth.AttributeExtractor.XML : creating mapping 
for Attribute urn:mace:dir:attribute-def:eduPersonEntitlement
2015-02-27 22:36:38 INFO Shibboleth.AttributeExtractor.XML : creating mapping 
for Attribute urn:oid:1.3.6.1.4.1.5923.1.1.1.7
2015-02-27 22:36:38 INFO Shibboleth.AttributeExtractor.XML : creating mapping 
for Attribute urn:mace:dir:attribute-def:eduPersonTargetedID
2015-02-27 22:36:38 INFO Shibboleth.AttributeExtractor.XML : creating mapping 
for Attribute urn:oid:1.3.6.1.4.1.5923.1.1.1.10
2015-02-27 22:36:38 INFO Shibboleth.AttributeExtractor.XML : creating mapping 
for Attribute urn:oasis:names:tc:SAML:2.0:nameid-format:persistent
2015-02-27 22:36:38 INFO Shibboleth.Application : building AttributeFilter of 
type XML...
2015-02-27 22:36:38 INFO Shibboleth.AttributeFilter : loaded XML resource 
(/etc/shibboleth/attribute-policy.xml)
2015-02-27 22:36:38 INFO Shibboleth.Application : building AttributeResolver of 
type Query...
2015-02-27 22:36:38 INFO Shibboleth.Application : building CredentialResolver 
of type File...
2015-02-27 22:36:38 INFO XMLTooling.SecurityHelper : loading private key from 
file (/etc/shibboleth/sp-key.pem)
2015-02-27 22:36:38 INFO XMLTooling.SecurityHelper : loading certificate(s) 
from file (/etc/shibboleth/sp-cert.pem)
2015-02-27 22:36:38 INFO Shibboleth.AttributeExtractor.XML : reload thread 
started...running when signaled
2015-02-27 22:36:38 INFO Shibboleth.AttributeFilter : reload thread 
started...running when signaled
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (default::getHeaders::Application)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring SSO 
initiation for protocol (SAML2)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding SessionInitiator of 
type (SAML2) to chain (/Login)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring 
ArtifactResolution endpoints for protocol (SAML2)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
ArtifactResolutionService for Binding 
(urn:oasis:names:tc:SAML:2.0:bindings:SOAP) at (/Artifact/SOAP)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_1/Artifact/SOAP::run::SAML2Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring SSO 
endpoints for protocol (SAML2)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
AssertionConsumerService for Binding 
(urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST) at (/SAML2/POST)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_1/SAML2/POST)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
AssertionConsumerService for Binding 
(urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign) at 
(/SAML2/POST-SimpleSign)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_1/SAML2/POST-SimpleSign)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
AssertionConsumerService for Binding 
(urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact) at (/SAML2/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_1/SAML2/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
AssertionConsumerService for Binding 
(urn:oasis:names:tc:SAML:2.0:bindings:PAOS) at (/SAML2/ECP)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_1/SAML2/ECP)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring SSO 
initiation for protocol (SAML1)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding SessionInitiator of 
type (Shib1) to chain (/Login)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring SSO 
endpoints for protocol (SAML1)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
AssertionConsumerService for Binding 
(urn:oasis:names:tc:SAML:1.0:profiles:browser-post) at (/SAML/POST)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_1/SAML/POST)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
AssertionConsumerService for Binding 
(urn:oasis:names:tc:SAML:1.0:profiles:artifact-01) at (/SAML/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_1/SAML/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_1/Login::run::SAML2SI)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_1/Login::run::Shib1SI)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring Logout 
initiation for protocol (SAML2)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding LogoutInitiator of 
type (SAML2) to chain (/Logout)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring Logout 
endpoints for protocol (SAML2)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding SingleLogoutService 
for Binding (urn:oasis:names:tc:SAML:2.0:bindings:SOAP) at (/SLO/SOAP)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_1/SLO/SOAP)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding SingleLogoutService 
for Binding (urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect) at 
(/SLO/Redirect)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_1/SLO/Redirect)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding SingleLogoutService 
for Binding (urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST) at (/SLO/POST)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_1/SLO/POST)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding SingleLogoutService 
for Binding (urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact) at 
(/SLO/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_1/SLO/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring Logout 
initiation for protocol (Local)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding LogoutInitiator of 
type (Local) to chain (/Logout)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_1/Logout::run::SAML2LI)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_1/Logout::run::LocalLI)
2015-02-27 22:36:38 INFO Shibboleth.Application : building MetadataProvider of 
type XML...
2015-02-27 22:36:38 INFO OpenSAML.MetadataProvider.XML : loaded XML resource 
(https://portal4.mss.tatacommunications.com/idp/shibboleth)
2015-02-27 22:36:38 INFO OpenSAML.MetadataProvider.XML : adjusted reload 
interval to 180000 seconds
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_1::getHeaders::Application)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring SSO 
initiation for protocol (SAML2)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding SessionInitiator of 
type (SAML2) to chain (/Login)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring 
ArtifactResolution endpoints for protocol (SAML2)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
ArtifactResolutionService for Binding 
(urn:oasis:names:tc:SAML:2.0:bindings:SOAP) at (/Artifact/SOAP)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_2/Artifact/SOAP::run::SAML2Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring SSO 
endpoints for protocol (SAML2)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
AssertionConsumerService for Binding 
(urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST) at (/SAML2/POST)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_2/SAML2/POST)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
AssertionConsumerService for Binding 
(urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign) at 
(/SAML2/POST-SimpleSign)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_2/SAML2/POST-SimpleSign)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
AssertionConsumerService for Binding 
(urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact) at (/SAML2/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_2/SAML2/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
AssertionConsumerService for Binding 
(urn:oasis:names:tc:SAML:2.0:bindings:PAOS) at (/SAML2/ECP)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_2/SAML2/ECP)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring SSO 
initiation for protocol (SAML1)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding SessionInitiator of 
type (Shib1) to chain (/Login)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring SSO 
endpoints for protocol (SAML1)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
AssertionConsumerService for Binding 
(urn:oasis:names:tc:SAML:1.0:profiles:browser-post) at (/SAML/POST)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_2/SAML/POST)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding 
AssertionConsumerService for Binding 
(urn:oasis:names:tc:SAML:1.0:profiles:artifact-01) at (/SAML/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_2/SAML/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_2/Login::run::SAML2SI)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_2/Login::run::Shib1SI)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring Logout 
initiation for protocol (SAML2)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding LogoutInitiator of 
type (SAML2) to chain (/Logout)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring Logout 
endpoints for protocol (SAML2)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding SingleLogoutService 
for Binding (urn:oasis:names:tc:SAML:2.0:bindings:SOAP) at (/SLO/SOAP)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_2/SLO/SOAP)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding SingleLogoutService 
for Binding (urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect) at 
(/SLO/Redirect)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_2/SLO/Redirect)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding SingleLogoutService 
for Binding (urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST) at (/SLO/POST)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_2/SLO/POST)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding SingleLogoutService 
for Binding (urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact) at 
(/SLO/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_2/SLO/Artifact)
2015-02-27 22:36:38 INFO Shibboleth.Application : auto-configuring Logout 
initiation for protocol (Local)
2015-02-27 22:36:38 INFO Shibboleth.Application : adding LogoutInitiator of 
type (Local) to chain (/Logout)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_2/Logout::run::SAML2LI)
2015-02-27 22:36:38 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_2/Logout::run::LocalLI)
2015-02-27 22:36:38 INFO Shibboleth.Application : building MetadataProvider of 
type XML...
2015-02-27 22:36:38 INFO OpenSAML.MetadataProvider.XML : reload thread 
started...running every 180000 seconds
2015-02-27 22:36:40 INFO OpenSAML.MetadataProvider.XML : loaded XML resource 
(https://idp.testshib.org/idp/shibboleth)
2015-02-27 22:36:40 INFO OpenSAML.MetadataProvider.XML : adjusted reload 
interval to 180000 seconds
2015-02-27 22:36:40 INFO Shibboleth.Listener : registered remoted message 
endpoint (idp_2::getHeaders::Application)
2015-02-27 22:36:40 INFO Shibboleth.Listener : listener service starting
2015-02-27 22:36:40 INFO OpenSAML.MetadataProvider.XML : reload thread 
started...running every 180000 seconds

__________________________________________________________________________
OpenStack Development Mailing List (not for usage questions)
Unsubscribe: [email protected]?subject:unsubscribe
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev

Re: [openstack-dev] Need help in configuring keystone

Reply via email to