Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision | Next revisionBoth sides next revision | ||
en:certificates [2017/12/04 15:51] – [The SSL certificate chain on your webserver] Silke Meyer | en:certificates [2017/12/04 15:57] – Wolfgang Pempe | ||
---|---|---|---|
Line 2: | Line 2: | ||
In the context of SAML-based communication between IdP and SP, certificates are used for purposes of signature validation and encryption. Those certificates must be registered for the respective entity using the [[en: | In the context of SAML-based communication between IdP and SP, certificates are used for purposes of signature validation and encryption. Those certificates must be registered for the respective entity using the [[en: | ||
- | **The general rule is:** Entities with invalid (that is expired or revoked) certificates are automatically removed from the productive DFN-AAI federation! | + | **The general rule is:** Entities with invalid (i.e. expired or revoked) certificates are automatically removed from the productive DFN-AAI federation! |
===== Information for Identity Providers / Attribute Authorities ===== | ===== Information for Identity Providers / Attribute Authorities ===== | ||
Cf. [[de: | Cf. [[de: | ||
===== Information for Service Providers ===== | ===== Information for Service Providers ===== | ||
- | All certificates and the respective private keys used for SAML-based communication have to be add to your SP's configuration, | + | All certificates and the respective private keys used for SAML-based communication have to be added to your SP's configuration, |
==== DFN-PKI Certificates ==== | ==== DFN-PKI Certificates ==== |