SSL Certificate update
Srinu Anumaneni
srinu.ydlp at gmail.com
Thu Sep 13 21:57:48 EDT 2018
No need to update provider ssl information at cosumer. If we need to update
ssl certificate where we have to change it. Code developed already by
others we are unable to find where to update provider ssl certificate on
consumer application.
Thanks
On Thu, Sep 13, 2018, 11:27 PM Peter Schober <peter.schober at univie.ac.at>
wrote:
> * Srinu Anumaneni <srinu.ydlp at gmail.com> [2018-09-13 19:30]:
> > xyz.com's ssl certification is expired, do we need to change
> > metadata added in pqr.com.
>
> If that's a question the answer is "no", at least as long as the
> involved systems adhere to OASIS SAML MetaIOP[1], as the Shibboleth
> IDP and SP do.
>
> > If I change metadata file I am getting expections.
>
> Signature validation should fail if on the SP side if the cert in
> metadata at the SP (about the IDP) doesn't match the key the IDP signs
> with. Is that what you're getting? Or other exceptions (be specific
> and provide the literal error messages)?
>
> -peter
>
> [1] SAML V2.0 Metadata Interoperability Profile
> https://wiki.oasis-open.org/security/SAML2MetadataIOP
> --
> For Consortium Member technical support, see
> https://wiki.shibboleth.net/confluence/x/coFAAg
> To unsubscribe from this list send an email to
> users-unsubscribe at shibboleth.net
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20180914/2802436f/attachment.html>
More information about the users
mailing list