By: Mohib Zico staff 05 Jul 2013 at 3:24 p.m. CDT

1 Response
Mohib Zico gravatar
How many certificates are there in IdP and what are their purpose?

By Mohib Zico staff 16 Feb 2015 at 9:47 a.m. CST

Mohib Zico gravatar
IdP is using two types of certificates. 1. SSL Certificate / Apache Certificate / Java Certificate 2. Self signed Certificate / Shib Certificate / Metadata Certificate SSL Certificate is Certificate Authority signed. It is using for the HTTPS part of your IdP's hostname. If you click on the "https" part of your hostname from web browser ( ); you will see the informations of this certificate. Self Signed Certificate is being used for SSO message passing from IdP to SP and vice versa. If your IdP is InCommon registered, you will see same certificate in InCommon metadata for your organization part. This certificate is visible from location: Check out the certificate inside <ds:X509Certificate> ... Or, if you want to grab this certificate directly from your Gluu Server's filesystem; location: /etc/certs/. Name of this this certificate: "DA....-shib.crt" Both certificates should be renewed on proper time.