I have 2 active certificates in my service provider configuration (LocalCertificateSerialNumber & SecondaryLocalCertificateSerialNumber). This comes in handy as when there is a need to replace a certificate, I can’t expect every external Identity provider we work with to migrate to the new certificate simultaneously. This works well with Id Initiated SSO.
However we recently started working with SP Initiated SSO.
I’m wondering if there is any way to specify, per Identity provider, which certificate to use to sign AuthNRequest when issuing the InitiateSSO method?
You can also specify the LocalCertificateSerialNumber etc on the . This means you can configure a local certificate specifically for each partner IdP. If no LocalCertificateSerialNumber is configured for a , the LocalCertificateSerialNumber configured for your is used.
Please refer to the Certificate Rollover section of the Certificate Guide for more information.
https://www.componentspace.com/Forums/9349/Certificate-Guide
[quote][/quote]
You can also specify the LocalCertificateSerialNumber etc on the . This means you can configure a local certificate specifically for each partner IdP. If no LocalCertificateSerialNumber is configured for a , the LocalCertificateSerialNumber configured for your is used.
Please refer to the Certificate Rollover section of the Certificate Guide for more information.
https://www.componentspace.com/Forums/9349/Certificate-Guide
Please refer to the Certificate Rollover section of the Certificate Guide for more information.
https://www.componentspace.com/Forums/9349/Certificate-Guide
What version was this feature introduced? We are running 2.6.0.19.
It was introduced in v2.6.0.0.