collaboration@CANARIE: All Site Activity

Activity

- Corey Scholefield@coreys_uvic_ca
Corey Scholefield replied on the discussion topic Invitation for your feedback on Shibboleth 3 & related federation topics for upcoming idweek. in the group CAF 1534 days ago

Hi Chris, I wanted to spark some discussion here about handling authorization for access to a service, when the SP doesn't implement any authorization mechanism. For the current case in hand, I'm going to take 2 steps : 1) advocate to...
- Shawn DeWolfe@sdewolfe_uvic_ca
Shawn DeWolfe joined the group CAF 1547 days ago
- Chris Phillips@Chris_Phillips_canarie_ca
Chris Phillips bookmarked Catalogue of SAML based libraries, toolkits, and components in the group CAF 1555 days ago

One of the more comprehensive catalogues of libraries, toolkits and components for SAML enabled technology

https://en.wikipedia.org/wiki/SAML-based_products_and_services#Libraries_and_toolkits_to_develop_SAML_actors_and_SAML-enabled_services
- Chris Phillips@Chris_Phillips_canarie_ca
Chris Phillips commented on the blog Configuring Acceptable Strength Webserver Cipher Suites To Avoid Logjam Problems in the group IDP Installer 1565 days ago

A tomcat user provided some feedback that they used this in their connector setting successfully as well (minus RC4 ciphers): Connector port="7443" protocol="HTTP/1.1" SSLEnabled="true"...

Chris Phillips published a blog post Configuring Acceptable Strength Webserver Cipher Suites To Avoid Logjam Problems in the group IDP Installer 1565 days ago

Latest Mozilla Firefox update to version 39.0 results in sites being blocked due to webserver weak cipher suites.

Comments

Chris Phillips 1565 days ago

A tomcat user provided some feedback that they used this in their connector setting successfully as well (minus RC4 ciphers):

Connector port="7443"
                protocol="HTTP/1.1"
                SSLEnabled="true"
                maxThreads="150"
                scheme="https"
                secure="true"
                clientAuth="false"
                protocols="TLSv1, TLSv1.1, TLSv1.2"
                keyAlias="tomcat"
                keystoreFile="/opt/shibboleth-idp/credentials/idp-https.tks"
                keystorePass="*Your Keystore Password*"
                ciphers="TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA256,TLS_RSA_WITH_AES_256_CBC_SHA"

- Chris Phillips@Chris_Phillips_canarie_ca
Chris Phillips uploaded the file IdP Installer 2.2.1-CAF Maintenance Release in the group IDP Installer 1580 days ago

This release for the CAF IDP-Installer updates components to current versions and has some internal optimizations View distribution on Github: http://bit.ly/idpInstaller221CAF Shibboleth version in this release: ...
- Chris Phillips@Chris_Phillips_canarie_ca
Chris Phillips uploaded the file IdP Installer 2.2.0-CAF Expanded Platform Release in the group IDP Installer 1608 days ago

This release for the CAF IDP-Installer expands platform support and updates components to current versions. Expanded platforms are CentOS7 and Ubuntu14.04LTS for Shibboleth2.4.4 installations. Future releases will be on based on...
- Randy Jones@Randy_Jones_canarie_ca
Randy Jones joined the group Research Software 1635 days ago
- Randy Jones@Randy_Jones_canarie_ca
Randy Jones joined the group DAIR 1635 days ago
- Chris Phillips@Chris_Phillips_canarie_ca
Chris Phillips uploaded the file BCNet2015 - CAF Update in the group CAF 1638 days ago

CAF Update on eduroam and Federated SSO Identity Software
- Chris Phillips@Chris_Phillips_canarie_ca
Chris Phillips bookmarked Shibboleth V3 home in the group IDP Installer 1638 days ago

Home of the v3 Shibboleth IdP in depth documentation

https://wiki.shibboleth.net/confluence/display/IDP30/Home
- Chris Phillips@Chris_Phillips_canarie_ca
Chris Phillips bookmarked IAMOnline Shibboleth V3 in deep dive presentation in the group IDP Installer 1638 days ago

A deep dive presentation from inCommon's IAMOnline series ( http://www.incommon.org/iamonline )

http://www.incommon.org/docs/iamonline/20150311_IAMOnline.pptx
- Chris Phillips@Chris_Phillips_canarie_ca
Chris Phillips uploaded the file IdP Software Dependancy Matrix in the group IDP Installer 1638 days ago

A detailed software and version matrix for the IdP Installer. Orange signals a change of the software component.
- Wendy Petersen@Wendy_Petersen_canarie_ca
Wendy Petersen published a blog post Migrating to eduroam as your primary SSID 1642 days ago

Ready to connect your institution to eduroam or migrate to eduroam as your primary SSID? Follow these high-level steps to get started today!
- Chris Phillips@Chris_Phillips_canarie_ca
Chris Phillips uploaded the file IdP Installer 2.1.1-CAF Security Update Release in the group IDP Installer 1656 days ago

This release for the CAF IDP-Installer is a security update to keep current with the latest 2.x series Shibboleth IdP (v2.4.4) Download Links: Distribution directly from Github:http://bit.ly/idpInstaller211CAFzip Installation...
- Rima Faour@Rima_Faour_canarie_ca
Rima Faour has a new avatar 1656 days ago
- Brian Corrie@brian_corrie_sfu_ca
Brian Corrie joined the group CAF 1672 days ago
- Wendy Petersen@Wendy_Petersen_canarie_ca
Wendy Petersen has a new avatar 1751 days ago
- Chris Phillips@Chris_Phillips_canarie_ca
Chris Phillips uploaded the file IdP Installer 2.1.0-CAF Feature Update Release in the group IDP Installer 1764 days ago

This release for the CAF IDP-Installer adds features and keeps current on security updates. Download Links: Distribution directly from Github: http://bit.ly/idpInstaller210CAFzipInstallation documentation:...
- Scott Henwood@Scott_Henwood_canarie_ca
Scott Henwood uploaded the file Services for Distributed Data, Security and Computation - an iReceptor Perspective in the group Research Software 1768 days ago