IDPv3 X509Auth - accessing certificate

Emilio Penna emilio.penna at
Wed Dec 16 15:02:28 EST 2015

Scott, Tom, thank you for your answers,

I can access now the certificate in a scripted attribute with

cert = 

and (for example)  get the  serial number with:



El 15/12/2015 22:35, Cantor, Scott escribió:
> On 12/15/15, 6:29 PM, "users on behalf of Emilio Penna"<users-bounces at on behalf of emilio.penna at>  wrote:
>> I see that net.shibboleth.idp.authn.impl.X509AuthServlet sets the
>> certificate in
>> subject.getPublicCredentials().add(cert)
> That's how, you get it from the authenticated Subject's principal collection.
> -- Scott

More information about the users mailing list