Hi Danushka, In the current implementation, it is not possible to set different keystore for signing OOTB as it is not required in most of the cases.
But you can provide your own implementation for signing by implementing org.wso2.carbon.identity.sso.saml.builders.signature.SSOSigner interface and setting following property in the identity.xml, <SAMLSSOSigner>org.wso2.carbon.identity.sso.saml.builders.signature.DefaultSSOSigner</SAMLSSOSigner> Thanks, Thanuja On Wed, Nov 8, 2017 at 8:52 AM, Danushka Fernando <[email protected]> wrote: > Hi All > > Currently in Identity Server we use server's primary keystore's primary > cert for response signing. Is it possible to use a different cert for this > somehow? > > Thanks & Regards > Danushka Fernando > Associate Tech Lead > WSO2 inc. http://wso2.com/ > Mobile : +94716332729 <+94%2071%20633%202729> > -- *Thanuja Lakmal* Associate Technical Lead WSO2 Inc. http://wso2.com/ *lean.enterprise.middleware* Mobile: +94715979891
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
