Transcript 20040419-TARGET-Ball

Shibboleth Tutorial
Targets
John Ball
SUNY at Buffalo
[email protected]
Target Deployment
 UB Shibboleth deployment
 Hardware/OS
 Current Deployment
 Customizations
 Other issues/contingencies
Hardware/OS
Apache on Solaris 8/9
 Initial deployment in our Administrative
web farm
 Typically a Sunfire 280R in load
balanced model behind a Cisco CSS
 Hitachi SAN storage


Application Data
User session credentials
Customization
 Wrote some custom code to use an
Oracle DB for the SHAR cache



Keeps the state in a HA environment
Looking to contribute this to I2
Why oracle?
Content Services Switch Issue
 Have not solved the issue of 2 virtualized
services communicating (NATed) behind
the same CSS
 “Implementation detail”
Stability issues
 Not been able to run a Shib 1.1 Target
under load on Solaris with any stability –
yet
 Hard to replicate the issue, but we did it!
 Looking to Shib 1.2 to solve this issue
(code revisions)
Other “fixes”
 Contingencies if we can not work out
Shar stability on Solaris Targets

Move the Shar to another machine?
 Probably
Linux
 Would need to address security since it uses
TCP vs Unix sockets

Consider Apache on Linux for the Target
application servers
 Not
a realistic solution for the short term with
our Sun web farm infrastructure