Versions Compared

Old Version 41

changes.mady.by.user Nicole Roy

Saved on

compared with

New Version 42

changes.mady.by.user Nicole Roy

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Warning

After several months of communication with participants, InCommon Operations removed the legacy metadata download endpoint (currently, a redirect) on Wednesday, February 14, 2018

All metadata clients that attempt to download metadata from this endpoint should have switched to one of the production endpoints noted in: Metadata Aggregates before that date. Failure to update to the production metadata locations has likely caused your SAML deployment to break on February 27, 2018 at approximately 2:44 p.m. US Eastern Time.


For many years, InCommon has supported a redirect from a very old metadata download location:

http://wayf.incommonfederation.org/InCommon/InCommon-metadata.xml

And

https://wayf.incommonfederation.org/InCommon/InCommon-metadata.xml

To the current production (“main”) aggregate location:

http://md.incommon.org/InCommon/InCommon-metadata.xml

On February 14, 2018, InCommon Operations REMOVED this redirect.

It is CRITICAL that all production metadata clients be configured to fetch metadata from http://md.incommon.org/InCommon/InCommon-metadata.xml or one of the other three locations on md.incommon.org.

If you currently fetch metadata from one of the old (wayf.incommonfederation.org) locations noted above, you need to reconfigure your deployment. Failure to do so means that your IdP and/or SPs broke on February 27, 2018.

At the bottom of this page, you will find a list of hosts, updated weekly, that are still downloading metadata from the old location. If you see a host on the list that is at your organization, please contact the relevant systems personnel to arrange to switch metadata consumption to one of the supported aggregates.

Please pass along this information to anyone in your organization who is responsible for running an IdP or SP in InCommon, especially those such as delegated administrators or other systems administrators who may not be subscribed to this mailing list.



Domains with hosts still attempting to use legacy metadata endpoint
1acm.org
2amazonaws.com
3anl.gov
4arizona.edu
5atg.travel
56atomiclearning.com
67berkeley.edu
78blackboard.com
89brainerd.net
910cengage.com10charter.com
11cloudtricity.com
12cmu.edu
13code42.com
14comcomcastbusiness.uynet
15duke.edu
16eth0-0-fw3-1-ap-q18-va2.mhint
17eth0-0-fw3-1-ap-r137-3-va3.mhint
18everestdc.com
19expedient.com
20fisc.com
21fischerinternational.com
22gatech.edu
23googleusercontent.com
24illinois.edu
25imleagues.com
26in-addr.arpa
27internet2.edu
28iu.edu
29jhsph.edu
30jhu.edu
31mbl.edu
32mtu.edu
33northamericancoax.com
34NYU.EDU
35osumc.edu
36proxad.net
3734refworks.com
3835rfsuny.org
39sdstate.edu
3640serialssolutions.com
4137siteprotect.com
4238surf.nl
4339surfnet.nl
4440t2hosted.com
4541thomsonreuters.com
4642trln.org
4743trondent.com
4844uark.edu
4945ucmerced.edu
5046ucsf.edu
5147ucsfmedicalcenter.org
5248uic.edu
5349uninett.no
5450utsystem.edu
5551uw.edu
5652vizientinc.com
53washington.edu
5457webair.com
5855whoi.net
5956wm.edu
6057wpi.edu
Note

The information below was last updated on TuesdayFriday, March 1316, 2018.

IMPORTANT: The table on the left is a list of root DNS zones with hosts still attempting to access the legacy metadata location. The table on the right is a list of actual hosts still attempting to access the legacy metadata.


REMINDER: When you make a configuration change to target one of the current production metadata aggregate locations, you may need to restart your SAML SP software (shibd/etc) to cause it to re-read the configuration.

42

Hosts still attempting to use legacy metadata endpoint
1137.211.93.208.in-addr.arpa
2141.154.251.23.bc.googleusercontent.com
3216-139-212-28.aus.us.siteprotect.com
42252-00f1-bc01.ucsfmedicalcenter.org
52252-00f1-bc02.ucsfmedicalcenter.org
624-205-93-214.dhcp.psdn.ca.charter.com72408-0c50-bc01.ucsfmedicalcenter.org
872408-0c50-bc02.ucsfmedicalcenter.org
985-10-31-155.everestdc.com
1095-10-31-164.everestdc.com
11105-10-31-182.everestdc.com
12115-10-31-214.everestdc.com
1250-205-70-183-static.hfc.comcastbusiness.net
1369-168-255-13.brainerd.net
1469-168-255-43.brainerd.net
1569-168-255-62.brainerd.net
1669-196-252-6.blackboard.com
17ACMWEB06.acm.org
18ACMWEB10.acm.org
19al2s-demo.net.internet2.edu
20aragusa-dev6.grnoc.iu.edu
21atg-pool.nat.uw.edu
22borked.wpi.edu
23cloudvpn1.code42.com
24cloudvpn2.code42.com
25cluster1.serialssolutions.com
26collections.library.illinois.edu
27comphxuawifi.telcom.arizona.edu
28cp.nursing.jhu.edu
2829crowd-surf.surf.nl
2930crowd-test.surfnet.nl
3031crowd.surfnet.nl
3132ctl.jhsph.edu
3233dhn-c5-efs.duhs.duke.edu
3334docdelivery2.trondent.com
3435dora.uark.edu
3536dpoc.uark.edu
3637ec2-107-22-198-108.compute-1.amazonaws.com
3738ec2-107-22-238-17.compute-1.amazonaws.com
3839ec2-107-23-147-38.compute-1.amazonaws.com
3940ec2-107-23-200-82.compute-1.amazonaws.com
4041ec2-107-23-78-15.compute-1.amazonaws.com
4142ec2-184-72-147-129.compute-1.amazonaws.com
ec2-34-194-230-61.compute-1.amazonaws.com43ec2-34-226-222-114.compute-1.amazonaws.com
44ec2-50-17-229-101.compute-1.amazonaws.com
45ec2-52-1-179-223.compute-1.amazonaws.com
46ec2-52-10-19-174.us-west-2.compute.amazonaws.com
47ec2-52-20-215-192.compute-1.amazonaws.com
48ec2-52-206-216-95.compute-1.amazonaws.com
49ec2-52-21-240-124.compute-1.amazonaws.com
50ec2-52-6-126-78.compute-1.amazonaws.com
51ec2-52-7-144-22.compute-1.amazonaws.com
52ec2-52-91-134-224.compute-1.amazonaws.com
53ec2-54-146-225-47.compute-1.amazonaws.com
54ec2-54-147-125-241.compute-1.amazonaws.com
55ec2-54-164-203-179.compute-1.amazonaws.com
56ec2-54-166-254-34.compute-1.amazonaws.com
57ec2-54-175-50-103.compute-1.amazonaws.com
5758ec2-54-186-107-10.us-west-2.compute.amazonaws.com
5859ec2-54-210-41-28.compute-1.amazonaws.com
5960ec2-54-210-58-241.compute-1.amazonaws.com
6061ec2-54-211-88-6.compute-1.amazonaws.com
6162ec2-54-221-238-160.compute-1.amazonaws.com
6263ec2-54-85-240-29.compute-1.amazonaws.com
6364ec2-54-87-226-206.compute-1.amazonaws.com
6465ec2-54-88-67-127.compute-1.amazonaws.com
6566esappi11.uits.iu.edu
6667esappi12.uits.iu.edu
6768eth0-0-fw3-1-ap-q18-va2.blackboard.com
6869eth0-0-fw3-1-ap-q18-va2.mhint
6970eth0-0-fw3-1-ap-r137-3-va3.blackboard.com
7071eth0-0-fw3-1-ap-r137-3-va3.mhint
7172ewebproxy.thomsonreuters.com
7273fischer-gig.fischerinternational.com
7374fischerwall.fisc.com
7475fw-msp--sw-core-msp--4009.code42.com
7576gannicus.las.uic.edu
7677ginger.autonomy.ri.cmu.edu
7778gis.accc.uic.edu
7879git.bmi.osumc.edu
7980gmoc-db.grnoc.iu.edu
8081google2.utsystem.edu
8182gradleaders-vsrx.expedient.com82gw1-va2.blackboard.com
83hq.atomiclearning.com
84idp.mbl.edu
85ip-128-239-61-105.v4.wm.edu
86ip-14-36-244-173.west.us.northamericancoax.com
87ip-63-36-244-173.west.us.northamericancoax.com
88ip-75-36-244-173.west.us.northamericancoax.com
89ITDEV2.QATAR.CMU.EDU
9087library.proxy.mbl.edu
91lns-bzn-42-82-255-84-78.adsl.proxad.net
9288mblfw.whoi.net
9389net253.is.jhsph.edu
9490net4.jhsph.edu
9591node2150.it.mtu.edu
9692node2151oars3.itehs.mtuwashington.edu
9793ocw.jhsph.edu
9894ohcininetng-fw01.cengage.com
9995pc4.sdn-test.grnoc.iu.edu
10096proxy-ext3.osumc.edu
101r179-27-72-58.ir-static.adinet.com.uy
97102raweb108.refworks.com
10398sc.vizientinc.com
10499sdg-dev.cites.illinois.edu
105100shib-d1.calnet.berkeley.edu
106101shib-test2.gatech.edu
107102srfseward1.rfsuny.org
108sso.sdstate.edu
103109t2pguardian01.t2hosted.com
110104topiawww1.webair.com
111TRACY.ES.ITS.NYU.EDU
105112trln-dev.trln.org
113106trlnr610a.trln.org
114107tshib02.ucmerced.edu
115108vm-bs-158-38-213-170.cl.uninett.no
116109vpn.cloudtricity.com
117110vx26.ucsf.edu
118111webmail.atg.travel
119112webmail.imleagues.com
120113webproxy1.anl.gov
121114webproxy2.anl.gov