Certificate Change in IDP

Peter Schober peter.schober at univie.ac.at
Tue Nov 20 06:33:14 EST 2018

* Santu Ghosh <mon.snahasish at gmail.com> [2018-11-20 08:59]:
> One of my IDP changed their signed certificate.
> Should we reload IDP metadata in SP again ?

Depends on how they changed the certificate. E.g. if they wrapped the
same key in a new certificate there's nothing to do for you.
If OTOH logins are currently broken due to signature validation
failing on your end, and you want them to work again, the then yes, SP
will need correct/current metadata.


More information about the users mailing list