meta data expired message with security errors
lalithj
j_lalith at hotmail.com
Wed Feb 13 21:09:54 EST 2013
We are relatively new to shibboleth SP integration side of things however
We got a Shibboleth Idp 2.3.8 running and going to integrate with a third
party SP none-shibboleth from SAML 2.0 compatible,
Initialy SP did not have a meta data but we created a one with the data
provided, eventhough we had an issue in the full integration we observed
attributes are getting passed from our end to the SP,
Now all of a sudden, we are expeirencing below error, Message did not meet
security requirements
In logs
Simple signature validation (with no request-derived credentials) failed
13:03:35.835 - WARN
[org.opensaml.common.binding.security.BaseSAMLSimpleSignatureSecurityPolicyRule:138]
- Validation of request simple signature failed for context issuer:
https://xxx.xxx.com/
....
Also in the IdP startup we can see below meta data expiration issue as well.
this is the file we created for SP.
Entire metadata document from
'/opt/shibboleth-idp/metadata/xxx.xxx.com-metadata.xml' was expired at time
of loading, existing metadata retained
Are these two related, or what could be the reason for this,
Also any online Tool to generate SP metada again.
Need some help to move forward
--
View this message in context: http://shibboleth.1660669.n2.nabble.com/meta-data-expired-message-with-security-errors-tp7584588.html
Sent from the Shibboleth - Users mailing list archive at Nabble.com.
More information about the users
mailing list