Adding Another IDP Signing Certificate in Shib 3.x SP

Bhagwat, Shrikant shrbhagw at
Sat Feb 8 16:30:51 EST 2020

I have SAML 2.0 IDP , their existing signing certificate is expiring. They have added new signing certificate. How can modify Shibboleth2.xml file to recognize two IDP Signing cert at same time.
Below is my "MetadataProvider" Element

<MetadataProvider type="XML" url=""
            backingFilePath="lab-weblogin-metadata.xml" reloadInterval="7200">
            <MetadataFilter type="Signature" certificate="Lab-WebloginFull.pem"/>
Electronic Mail is not secure, may not be read every day, and should not be used for urgent or sensitive issues 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the users mailing list