Are you sure that the private key is in "truststore_dev.jks"? It seems
unusual to store a private key in a file called "truststore". If you do a
keytool -list -keystore truststore_dev.jks -v, compare the issuer + serial
no. to the X509Data structure received in the message from the IdP.
Colm.
On
Hey Guys,
The IDP team was not very helpful they are microsoft shop and donĀ¹t even
know how things work. All they pretty much have to do is check boxes and
everything magically works. I am kind of stuck without progress.
I am trying to log the soap messages the logging is also not working. The
ce
Thanks very much for your help Colm really appreciate you taking time to
respond.
I am having a meeting with the IDP team today to check the certificates
and also verify if they are using the same certificate for token
encryption or some other key.
Thanks,
Vishnu
On 2015-03-12, 10:22 AM, "Colm
Are you sure that the fingerprint used by the STS server is the same key
use to encrypt the token (or the key used to sign the token)? The request
referenced:
CN=RootCATest<
>>
/X509IssuerName>-129557314303542840073062346837250522947<
>> /X509SerialNumber>
So take a look at the keystore referenc
The IDP team just got back saying the certificate finger print matches the
finger print in their STS server. Any clues as to what else could cause the
below error?
Certificate fingerprint (SHA1):
29:AF:CA:71:29:57:09:66:58:16:66:C4:F4:BA:B5:BA:21:A3:B6:C6
Could you please send the fingerprint of