updating SP's signing cert in metadata

IAM David Bantz dabantz at alaska.edu
Thu Oct 12 14:30:05 EDT 2017

Salesforce uses self-signed signing certs with 1 year lifetime, and it's
time to swap.
I think I can ease the transition by adding the new cert initially without
removing the old in their metadata, and the IdP is smart enough to rely on
the right cert; then after the switch is verified, remove the old. Am I

David Bantz
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20171012/89357820/attachment.html>

More information about the users mailing list