Do multiple SPs from the same server each need their own public/private keys?

Cody Carmichael ccarmichael at
Fri Aug 17 08:58:44 EDT 2018

If I have a software product that runs on a server, and this product
consists of multiple services that provide their own login to a user, does
each SP need its own public/private key pair? Like for example, if I have
the following servers:

So the first server has the following sources of metadata:

And the second server would have the same. For each server, does each SP
need its own unique public cert in its metadata or can the SPs on one
server share just one public/private key pair?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the users mailing list