IdP metadata based on multiple signing certificates

Dennis Wagelaar dennis.wagelaar at
Mon Aug 13 11:31:32 EDT 2012

Dear all,

At the URL below, I've read about using multiple signing certificates as part of the IdP metadata:

Is this usable in a situation where a "personal" IdP is used on a local machine, which uses an X.509 certificate signed by a single root certificate? This means many "dynamic" IdP certificates from the point of view of the SP, as there will be many such "personal" IdPs, all of which must be trusted by the SP.

Kind regards,
Dennis Wagelaar
-------------- next part --------------
An HTML attachment was scrubbed...

More information about the users mailing list