IdP Metadata

Richard Levenberg richardl at
Wed Apr 17 01:05:29 EDT 2019

In the documentation on the wiki

It states:
Note that by default this metadata is not signed, nor does it
dynamically reflect the actual IdP's configuration (for example signing
and encryption keys).  The file is simply built statically from a
template at install time.  As such, it is intended as informational
only, and is not suitable for direct consumption as-is by an SP wishing
to interoperate with the IdP.

What is the suggested mechanism by which IdP metadata is signed and does
dynamically reflect the IdP's configuration?


More information about the users mailing list