I’m the service provider
saml.config contains the following:
<ServiceProvider Name=“<a href=“https://serviceprovider.com””>https://serviceprovider.com"
LocalCertificateSerialNumber=“3f bf 6f dc c4 37 a5 87 9f b1 63 ed 5b 65 90 ab”/>
<PartnerIdentityProvider
Name=“<a href=“https://partneridp.com””>https://partneridp.com"
SignAuthnRequest=“true”
When SignAuthnRequest=“true” my application throws an exception when initating SP SSO to the IDP:
SAMLServiceProvider.InitiateSSO(Response, null, partnerIdP);
Due to the request of the partnerIdp, i need to use a commercially signed cert.
So I’m using the same one as my IIS; which is installed on the computer account for Personal Certificates / Trusted.
IIS runs as admin user and they do have access to read the private key.
The private key is not currently exportable. Im looking to install the certificate locally on my machine to see if I can sign the certifcate, but wondering if anything stands out about the format.
I read that the spaces should not matter when copying the serial number to LocalCertificateSerialNumber.
The configuration and what you described sounds correct.
Please enable SAML trace and send the generated log file as an email attachment to support@componentspace.com.
https://www.componentspace.com/Forums/17/Enabing-SAML-Trace
[quote][/quote]
The configuration and what you described sounds correct.
Please enable SAML trace and send the generated log file as an email attachment to support@componentspace.com.
https://www.componentspace.com/Forums/17/Enabing-SAML-Trace
Please enable SAML trace and send the generated log file as an email attachment to support@componentspace.com.
https://www.componentspace.com/Forums/17/Enabing-SAML-Trace
Perfect, I'll turn up tracing -
Thx!
Thanks.
Please mention this forum post when you email the log file.
[quote][/quote]
Will do -
Thx!
Thanks.