Simple signature validation failed
Les LaCroix
llacroix at carleton.edu
Fri Nov 16 15:01:38 EST 2018
Thanks for the prompt reply, it was spot-on as usual. They actually ARE
using Shib SP, and the downloaded metadata has two certs in it. Must be
trying to change certs.
-Les
------------------------------
Les LaCroix '79 | Strategic Technologist
Carleton College | 1 N. College St. | MS 3-ITS | Northfield, MN 55057
507.222.5455 | free/busy
<https://calendar.google.com/calendar/embed?src=llacroix%40carleton.edu&ctz=America/Chicago>
On Fri, Nov 16, 2018 at 1:37 PM Cantor, Scott <cantor.2 at osu.edu> wrote:
> On 11/16/18, 2:27 PM, "users on behalf of Les LaCroix" <
> users-bounces at shibboleth.net on behalf of llacroix at carleton.edu> wrote:
>
> > In the mean time, is there a relying-party configuration change I can
> make for this one SP to get past this error?
>
> No, just system level changes to remove/bypass the code that checks the
> signature. I suppose in the unlikely case they were using Shibboleth, the
> simplest change is to just interrogate it for its generated metadata to get
> the key it's actually using out of that and substitute the corrected
> metadata in front of InCommon's copy until it's fixed.
>
> -- Scott
>
>
>
>
> --
> For Consortium Member technical support, see
> https://wiki.shibboleth.net/confluence/x/coFAAg
> To unsubscribe from this list send an email to
> users-unsubscribe at shibboleth.net
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20181116/3e7d3f83/attachment.html>
More information about the users
mailing list