> I have SAML 2.0 IDP , their existing signing certificate is expiring. They have > added new signing certificate. How can modify Shibboleth2.xml file to > recognize two IDP Signing cert at same time. You don't, they modify their metadata to include it. -- Scott