Multiple certificates doing both signing+encryption
Jay Athalye
jay.athalye at gmail.com
Tue Nov 2 20:22:53 UTC 2021
Hello,
I have an SP credentials setup similar to what is shown in the cert rollover
<https://shibboleth.atlassian.net/wiki/spaces/SP3/pages/2067398968/Multiple+Credentials#MultipleCredentials-KeyRollover>
documentation.
I have ended up in a situation where I have two certs that do not specify
the "use" attribute.
I assume this is not best practice - and I am working towards marking one
of them as "use=encryption".
But I am curious about which cert is used for signing in this case? Is it
the first cert in the config without the "use" attribute?
Thanks,
Jay
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20211102/5c9b3746/attachment.htm>
More information about the users
mailing list