Upgrade IdPv2 to 3, error regarding relying-party

Cantor, Scott cantor.2 at osu.edu
Thu May 28 10:38:32 EDT 2015

On 5/28/15, 2:17 PM, "Moonlight" <mona0045 at gmail.com> wrote:

>So you mean that just the signing key and certificate file names in the
>credentials directory should match idp-signing.key and idp-signing.crt.

No, I'm saying the names need to match the properties you set, or leave 
defaulted. What the names are is your decision. After an upgrade, they're 
left entirely alone, and if you change that assumption and pull entirely 
different files into play, you have to compensate for that.

>Is it correct that i can use key and certificate from my V2 server with
>above names in /credentials directory? 
>idp.signing.key= %{idp.home}/credentials/idp-signing.key
>idp.signing.cert= %{idp.home}/credentials/idp-signing.crt


>The names of files are correct in config files and credentials directory 
>i get the error that I have posted in my previous message.

Then they're not in fact correct.

>But when i try it
>with key and certificate in credentials old which are created by idp 
>installation there is no problem.

I don't know what that means.

-- Scott

More information about the users mailing list