Cert rollover sanity check

Mike Flynn shibbolethlynda at yahoo.com
Mon Oct 31 17:29:47 GMT 2011


Thanks.  I emailed InCommon support.  Sorry for the spam to the list here.



________________________________
From: Tom Scavo <trscavo at gmail.com>
To: Shib Users <users at shibboleth.net>
Sent: Monday, October 31, 2011 10:17 AM
Subject: Re: Cert rollover sanity check

On Mon, Oct 31, 2011 at 12:12 PM, Mike Flynn <shibbolethlynda at yahoo.com> wrote:
> OK, I have made all of my changes on the SP side and am now ready to get the
> new cert published in the InCommon Metadata.
> The instructions say that when I add my cert to InCommon I need to add it
> with no use= XML attrib.  But in the dropdown I have Signing only and
> Signing and Encryption.  Which of these should be selected for both the NEW
> and the OLD certs?

No 'use' attribute is the same as both signing and encryption (this is
discussed in a parent document).

This has definitely crossed over into InCommon technical support.
Mike, I'll send a support address to you under separate cover.

Tom
--
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://shibboleth.net/pipermail/users/attachments/20111031/97a28997/attachment-0001.html 


More information about the users mailing list