Hi Bernard, You can upload the certificate into the 'Identity Provider Public Certificate' which is available under the 'Basic Information' section of Identity Provider configuration.
Thanks, On Wed, Jan 15, 2020 at 8:19 PM Bernard Paris <[email protected]> wrote: > Hi devs, > > We want to use Shibboleth as an identity provider for API manager V.3. > In the carbon console, via the IdP list, we have added an IdP entry then > under "Federated Authenticators section and the SAML2 Web SSO Configuration > section" we have configured our Shibboleth as identity provider. > > This IdP entry will behave as an SP for shibboleth. Since we want > Assertion Encryption and signing I understand this "SP like" needs a > private/public key in a certificate to do so. I've made a self-signed > certificate for this, and its public key has been be given to shibboleth in > the metadata file (xml path: > /EntityDescriptor/SPSSODescriptor/KeyDescriptor/KeyInfo/X509Data/X509Certificate). > > > Now my question is "where am I to specify this certificate in my > "Federated Authenticators section and the SAML2 Web SSO Configuration > section" ?" > > I didn't find any field for that in the "SAML2 Web SSO Configuration > section". > Unless this encryption use must only use the APIM server certificate in > wso2carbon.jks ? > > Hope my understand is correct, . > Thanks for any help. > > Regards, > Bernard > > > > _______________________________________________ > Dev mailing list > [email protected] > http://wso2.org/cgi-bin/mailman/listinfo/dev > -- Sathya Bandara Senior Software Engineer Blog: https://medium.com/@technospace WSO2 Inc. http://wso2.com Mobile: (+94) 715 360 421 <+94%2071%20411%205032>
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
