Hi devs, We want to use Shibboleth as an identity provider for API manager V.3. In the carbon console, via the IdP list, we have added an IdP entry then under "Federated Authenticators section and the SAML2 Web SSO Configuration section" we have configured our Shibboleth as identity provider.
This IdP entry will behave as an SP for shibboleth. Since we want Assertion Encryption and signing I understand this "SP like" needs a private/public key in a certificate to do so. I've made a self-signed certificate for this, and its public key has been be given to shibboleth in the metadata file (xml path: /EntityDescriptor/SPSSODescriptor/KeyDescriptor/KeyInfo/X509Data/X509Certificate). Now my question is "where am I to specify this certificate in my "Federated Authenticators section and the SAML2 Web SSO Configuration section" ?" I didn't find any field for that in the "SAML2 Web SSO Configuration section". Unless this encryption use must only use the APIM server certificate in wso2carbon.jks ? Hope my understand is correct, . Thanks for any help. Regards, Bernard _______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
