How to sign the IdP metadata?
Peter Schober
peter.schober at univie.ac.at
Fri Nov 30 04:11:07 EST 2012
* WULMS Alex <Alex.WULMS at swift.com> [2012-11-30 09:59]:
> They are not pulling it. They receive it out of band. But yes,
> eventually the key used for the signature will have to be renewed.
JFyi, I was referring to this:
https://wiki.shibboleth.net/confluence/display/SHIB2/TrustManagement#TrustManagement-SignandExpire
which is a permanent process, not just key renewal every couple of
years. Dooesn't matter if they never intend to update your metadata
(which means you'll have to stick with OOB for every update to your
metadata, of course),
-peter
More information about the users
mailing list