Skip to topic | Skip to bottom
Home
Federation
Hello TWikiGuest

Create personal sidebar
Federation.ClockSkewedr1.1 - 25 Aug 2007 - 17:36 - BrucLiongtopic end
Start of topic | Skip to actions

Clock Skewed Error

If the IdP or SP complains about clock skewed, then you gotta check if the boxes are running proper ntpdate. Make sure you run ntpdate every hour or so in your cron

  1. edit /etc/cron.hourly/runntp.sh with this content 
    ntpdate federation.org.au
  2. make it executable 
    chmod 755 /etc/cron.hourly/runntp.sh
  3. restart your cron 
    /etc/init.d/cron restart
  4. execute the script 
    /etc/cron.hourly/runntp.sh
  5. check if it's still out of sync, if it runs out of sync by much (i.e. 30 seconds, 1 minute, etc), then investigate why... 
    ntpdate -q federation.org.au

Shibboleth by default quite forgiving by allowing a 3 minutes time-window for any discrepanciew between IdP and SP communcation, however if it goes out of sync too much, it will spit out the error


to top
End of topic
Skip to action links | Back to top

Edit | Attach image or document | Printable version | Raw text | More topic actions
Revisions: | r1.1 | Total page history | Backlinks
You are here: Federation > FrequentlyAskedQuestions > ClockSkewed

to top

Copyright © 1999-2010 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback