InCommon metadata support

[Nick Roy <>]

Hi Jesse,

You have to click "Update" at the top of the SP metadata view page in the FM, then scroll down to Digital Certificates, and you can add a second cert. Just don’t click 'Delete' on the old one, and you’ll get a second one added. You’ll get a counterintuitive warning about changing your existing cert, but you will actually be adding a second cert. We have tested this in our dev environment, and it is working.

Best,

Nick

On 6 Sep 2019, at 11:22, Nick Roy wrote:

Hi,

My apologies for the late reply. We are looking into this with our software development team.

Best Regards,

Nick Roy
Director of Technology and Strategy
InCommon

On 21 Aug 2019, at 10:17, Jesse Banning wrote:

Hello,

I'm unable to find where to add a second certificate to an SP in FM. I also don't see a process for adding certs in the documentation. When I attempted to add a new cert by updating the SP, I was warned that the new cert would replace the existing one despite leaving the "delete" checkbox unchecked.

I'm sure FM must support multiple certificates in metadata this since that's necessary for certificate roll-over as well as for using different certs for signing and encryption.

Can anyone point me in the right direction (or to specific documentation) for configuring an SP with more than one certificate using Federation Manager?

Thanks,

-jesse

--

Jesse Banning

Manager of Platform Integration
O'Reilly Media, Inc. (Boston Office)

(617)499-7575 |
Calendar: https://beta.doodle.com/jbanning

Attachment: signature.asc
Description: OpenPGP digital signature