Both sides previous revision Previous revision Next revision | Previous revision Next revisionBoth sides next revision |
en:metadata [2018/03/13 11:21] – Wolfgang Pempe | en:metadata [2020/03/27 11:48] – [Additional Information] Wolfgang Pempe |
---|
====== Metadata ====== | ====== Metadata ====== |
\\ | <callout type="primary" title="Important Notes"> |
==== DFN-PKI Generation 2 Certificate for Signature Validation (new)==== | * These URLs are case-sensitive, i.e. lower case is important! |
| * HTTPS is supported. |
| * Please refer to [[en:production#metadataprovider|this page]] for configuration examples for Shibboleth IdP und SP. |
| </callout> |
| |
The signed metadata of the **DFN-AAI Test Federation:** \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-test-metadata.xml | The signed metadata of the **DFN-AAI Test Federation:** \\ |
| [[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-test-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-test-metadata.xml]] |
| |
The signed metadata of the **DFN-AAI Basic Federation:** (file comprises all DFN-AAI production IdPs)\\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-basic-metadata.xml | The signed metadata of the **DFN-AAI Basic Federation:** (file comprises all DFN-AAI production IdPs)\\ |
| [[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-basic-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-basic-metadata.xml]] |
| |
The signed metadata of the **DFN-AAI Advanced Federation:** \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-metadata.xml | The signed metadata of the **DFN-AAI Advanced Federation:** \\ |
| [[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-metadata.xml]] |
| |
Signed metadata file with all production **Service Providers in DFN-AAI (for IdPs):** \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-sp-metadata.xml | Signed metadata file with all production **Service Providers in DFN-AAI (for IdPs):** \\ |
| [[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-sp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-sp-metadata.xml]] |
| |
The signed metadata for participation of **IdPs in [[de:edugain|eduGAIN]]** (file comprises all SPs available via eduGAIN): \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+sp-metadata.xml | The signed metadata for participation of **IdPs in [[:de:edugain|eduGAIN]]** (file comprises all SPs available via eduGAIN):\\ |
| [[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+sp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+sp-metadata.xml]] |
| |
The signed metadata for participation of **SPs in [[de:edugain|eduGAIN]]** (file comprises all IdPs available via eduGAIN): \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+idp-metadata.xml | The signed metadata for participation of **SPs in [[:de:edugain|eduGAIN]]** (file comprises all IdPs available via eduGAIN):\\ |
| [[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+idp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+idp-metadata.xml]] |
| |
**Local metadata:** https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-local-999-metadata.xml ("999" has to be replaced with an organization-specific number. Please refer to [[de:metadata_local|Lokale Metadaten]]) | **Local metadata:** [[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-local-999-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-local-999-metadata.xml]] ("999" has to be replaced with an organization-specific number. Please refer to [[:de:metadata_local|Lokale Metadaten]]) |
| |
The **DFN-AAI certificate** (PEM format) for validating the signature(s) of DFN-AAI metadata (SHA256 fingerprint: D4:1A:66:79:E0:2A:05:BF:8A:2C:CA:24:6D:97:C1:CB:29:B8:53:ED:30:D8:C9:70:91:4F:92:E2:70:C2:8D:36): \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.g2.pem | **Certificate for validating the signature(s) of DFN-AAI metadata** (PEM format) \\ |
| SHA256 Fingerprint: 77:2D:24:F6:3F:5F:76:DD:F8:B5:7E:69:59:8D:25:33:BA:99:BB:15:01:CB:6C:B3:5D:A9:1A:85:2E:AB:EE:5F \\ |
| https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.pem |
| |
\\ | |
| |
==== DFN-PKI Generation 1 Certificate for Signature Validation (old)==== | ==== Additional Information ==== |
| |
The signed metadata of the **DFN-AAI Test Federation:** \\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Test-metadata.xml | For the difference between the "Advanced" and "Basic" federations/metadata please refer to the explanatory notes on the [[https://www.aai.dfn.de/en/der-dienst/degrees-of-reliance/|Degrees of Reliance]]. For configuration examples cf. [[:en:production|'Production Environment']], [[:de:shibidp3config-metadata|Shib IdP 3.x]] and [[de:shibsp#shibboleth_sp_3x|Shib SP 3.x]] metadata configuration. |
| |
The signed metadata of the **DFN-AAI Basic Federation:** (file comprises all DFN-AAI production IdPs)\\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Basic-metadata.xml | |
| |
The signed metadata of the **DFN-AAI Advanced Federation:**\\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-metadata.xml | |
| |
Signed metadata file with all production **Service Providers in DFN-AAI (for IdPs):** \\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-sp-metadata.xml | |
| |
The signed metadata for participation of **IdPs in [[de:edugain|eduGAIN]]** (file comprises all SPs available via eduGAIN): \\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+sp-metadata.xml | |
| |
The signed metadata for participation of **SPs in [[de:edugain|eduGAIN]]** (file comprises all IdPs available via eduGAIN): \\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+idp-metadata.xml | |
| |
**Local metadata:** https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Local-999-metadata.xml ("999" has to be replaced with an organization-specific number. Please refer to [[de:metadata_local|Lokale Metadaten]]) | |
| |
The **DFN-AAI certificate** (PEM format) for validating the signature(s) of DFN-AAI metadata (SHA256 fingerprint: D3:3E:0F:3C:C9:43:1F:A0:0C:14:97:86:30:E3:5F:72:39:56:2C:98:85:69:2D:52:63:1C:86:78:35:90:4F:5C): \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.pem | |
\\ fingerprint after March 20, 2017: 7B:44:E1:64:B4:6C:46:7D:82:07:BC:C1:BB:30:B8:64:11:2B:D2:73:09:47:32:CC:B2:20:2E:4A:33:5C:92:64 | |
| |
\\ | |
| |
==== Additional Information ==== | |
| |
For the difference between the "Advanced" and "Basic" federations/metadata please refer to the explanatory notes on the [[https://www.aai.dfn.de/en/der-dienst/degrees-of-reliance/|Degrees of Reliance]]. For configuration examples cf. [[de:production|'Produktionsbetrieb']] and [[de:shibidp3config-metadata|Shib IdP 3.x metadata configuration]]. | |