Could not resolve a key encryption credential for peer entity
trevor.fong at ubc.ca
Fri Sep 23 17:37:55 BST 2011
In relying-party.xml, I've specified <AnonymousRelyingParty>, then <DefaultRelyingParty> and then <RelyingParty id="https://ubctest.service-now.com"> - is that the correct place to put it? I tried specifying it before AnonymousRelyingParty and also between AnonymousRelyingParty and DefaultRelyingParty but the IdP didn't seem to like either situation and wouldn't start.
From: users-bounces at shibboleth.net [mailto:users-bounces at shibboleth.net] On Behalf Of Cantor, Scott
Sent: September-22-11 10:53 AM
To: users at shibboleth.net
Subject: Re: Could not resolve a key encryption credential for peer entity
On 9/22/11 1:44 PM, "Fong, Trevor" <trevor.fong at ubc.ca> wrote:
>Yup - we have turned off encryption for their SP, exactly as uChicago
>and Nate have suggested. We have the following in our relying-party.xml:
It isn't actually using that configuration if you're getting that error.
Maybe the entityID doesn't match, or something else is off, but your logs should show it using the default relying party config and not that one.
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
More information about the users