Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision		 Previous revision
Next revisionBoth sides next revision
en:metadata [2017/03/13 10:17] – angelegt Wolfgang Pempeen:metadata [2019/07/24 11:11] Wolfgang Pempe
Line 1: Line 1:
 ====== Metadata ====== ====== Metadata ======
-\\ 
-==== Certificate for Signature Validation - DFN-PKI Generation 2 (new)==== 
  
-The signed metadata of the **DFN-AAI Test Federation:** \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-test-metadata.xml+==== DFN-PKI Generation 2 Certificate for Signature Validation (new) ====
  
-The signed metadata of the **DFN-AAI Basic Federation:** (file comprises all productive IdPs)\\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-basic-metadata.xml+<wrap important round>**Important**
  
-The signed metadata of the **DFN-AAI Advanced Federation:**  \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-metadata.xml+These links are case-sensitive! HTTPS is supported.
  
-Signed metadata file with all **productiv Service Providers of DFN-AAI (for IdPs):** \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-sp-metadata.xml+</wrap>
  
-Die signierten Metadaten für die Teilnahme von **IdPs in [[https://www.aai.dfn.de/teilnahme/interfederation/|eduGAIN]]** (enthalten die über eduGAIN verfügbaren SPs): \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+sp-metadata.xml+The signed metadata of the **DFN-AAI Test Federation:** \\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-test-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-test-metadata.xml]]
  
-Die signierten Metadaten für die Teilnahme von **SPs in [[https://www.aai.dfn.de/teilnahme/interfederation/|eduGAIN]]** (enthalten die über eduGAIN verfügbaren IdPs): \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+idp-metadata.xml+The signed metadata of the **DFN-AAI Basic Federation:** (file comprises all DFN-AAI production IdPs)\\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-basic-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-basic-metadata.xml]]
  
-Das **DFN-AAI Zertifikat** im PEM-Format zur Überprüfung der Signatur der DFN-AAI Metadaten (SHA256 Fingerprint: D4:1A:66:79:E0:2A:05:BF:8A:2C:CA:24:6D:97:C1:CB:29:B8:53:ED:30:D8:C9:70:91:4F:92:E2:70:C2:8D:36): \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.g2.pem +The signed metadata of the **DFN-AAI Advanced Federation:** \\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-metadata.xml]]
  
-\\+Signed metadata file with all production **Service Providers in DFN-AAI (for IdPs):** \\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-sp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-sp-metadata.xml]]
  
-==== Zertifikat zur Signaturvalidierung aus DFN-PKI Generation 1 (alt)====+The signed metadata for participation of **IdPs in [[:de:edugain|eduGAIN]]** (file comprises all SPs available via eduGAIN):\\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+sp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+sp-metadata.xml]]
  
-Die signierten Metadaten der **DFN-AAI-Test-Föderation:** \\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Test-metadata.xml+The signed metadata for participation of **SPs in [[:de:edugain|eduGAIN]]** (file comprises all IdPs available via eduGAIN):\\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+idp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+idp-metadata.xml]]
  
-Die signierten Metadaten der **DFN-AAI-Basic-Föderation:** (alle produktiven IdPs enthalten)\\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Basic-metadata.xml+**Local metadata:** [[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-local-999-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-local-999-metadata.xml]] ("999" has to be replaced with an organization-specific number. Please refer to [[:de:metadata_local|Lokale Metadaten]])
  
-Die signierten Metadaten der **DFN-AAI-Advanced-Föderation:**  \\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-metadata.xml+The **DFN-AAI certificate** (PEM format) for validating the signature(s) of DFN-AAI metadata (SHA256 fingerprint: D4:1A:66:79:E0:2A:05:BF:8A:2C:CA:24:6D:97:C1:CB:29:B8:53:ED:30:D8:C9:70:91:4F:92:E2:70:C2:8D:36):\\ 
 +[[https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.g2.pem|https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.g2.pem]]
  
-Signierter Metadatensatz, der alle **produktiven Service Provider der DFN-AAI enthält (für IdPs):** \\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-sp-metadata.xml+<wrap important round>**Important**
  
-Die signierten Metadaten für die Teilnahme von **IdPs in [[https://www.aai.dfn.de/teilnahme/interfederation/|eduGAIN]]** (enthalten die über eduGAIN verfügbaren SPs): \\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+sp-metadata.xml+Please refer to [[de:production#metadataprovider|this page]] for configuration examples for Shibboleth IdP und SP.
  
-Die signierten Metadaten für die Teilnahme von **SPs in [[https://www.aai.dfn.de/teilnahme/interfederation/|eduGAIN]]** (enthalten die über eduGAIN verfügbaren IdPs): \\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+idp-metadata.xml+</wrap>
  
-Das **DFN-AAI Zertifikat** im PEM-Format zur Überprüfung der Signatur der DFN-AAI Metadaten (SHA256 Fingerprint: D3:3E:0F:3C:C9:43:1F:A0:0C:14:97:86:30:E3:5F:72:39:56:2C:98:85:69:2D:52:63:1C:86:78:35:90:4F:5C): \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.pem +==== DFN-PKI Generation 1 Certificate for Signature Validation (old) ==== 
-\\ Fingerprint ab 20März 2017: 7B:44:E1:64:B4:6C:46:7D:82:07:BC:C1:BB:30:B8:64:11:2B:D2:73:09:47:32:CC:B2:20:2E:4A:33:5C:92:64+<callout type="danger" title="Warning"> 
 +**The end of life of DFN-PKI Generation 1 [[https://blog.pki.dfn.de/2018/12/ablauf-der-alten-generation-1-der-dfn-pki-global/|is scheduled for 2019-07-09!]] \\ 
 +Only use Generation 2 metadata URLs! (see above)**   
 +</callout> 
 +<del>The signed metadata of the **DFN-AAI Test Federation:** \\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Test-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Test-metadata.xml]]
  
-\\+The signed metadata of the **DFN-AAI Basic Federation:** (file comprises all DFN-AAI production IdPs)\\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Basic-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Basic-metadata.xml]] 
 + 
 +The signed metadata of the **DFN-AAI Advanced Federation:** \\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-metadata.xml]] 
 + 
 +Signed metadata file with all production **Service Providers in DFN-AAI (for IdPs):** \\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-sp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-sp-metadata.xml]] 
 + 
 +The signed metadata for participation of **IdPs in [[:de:edugain|eduGAIN]]** (file comprises all SPs available via eduGAIN):\\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+sp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+sp-metadata.xml]] 
 + 
 +The signed metadata for participation of **SPs in [[:de:edugain|eduGAIN]]** (file comprises all IdPs available via eduGAIN):\\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+idp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+idp-metadata.xml]] 
 + 
 +**Local metadata:** [[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Local-999-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Local-999-metadata.xml]] ("999" has to be replaced with an organization-specific number. Please refer to [[:de:metadata_local|Lokale Metadaten]]) 
 + 
 +The **DFN-AAI certificate** (PEM format) for validating the signature(s) of DFN-AAI metadata (SHA256 fingerprint: D3:3E:0F:3C:C9:43:1F:A0:0C:14:97:86:30:E3:5F:72:39:56:2C:98:85:69:2D:52:63:1C:86:78:35:90:4F:5C):\\ 
 +[[https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.pem|https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.pem]]\\ 
 +fingerprint after March 20, 2017: 7B:44:E1:64:B4:6C:46:7D:82:07:BC:C1:BB:30:B8:64:11:2B:D2:73:09:47:32:CC:B2:20:2E:4A:33:5C:92:64 
 +</del> 
 +==== Additional Information ==== 
 + 
 +For the difference between the "Advanced" and "Basic" federations/metadata please refer to the explanatory notes on the [[https://www.aai.dfn.de/en/der-dienst/degrees-of-reliance/|Degrees of Reliance]]. For configuration examples cf. [[:de:production|'Produktionsbetrieb']] and [[:de:shibidp3config-metadata|Shib IdP 3.x metadata configuration]].
  
-==== Anmerkungen ==== 
  
-Zur Unterscheidung zwischen "Advanced" und "Basic" siehe die Erläuterungen zu den [[https://www.aai.dfn.de/der-dienst/verlaesslichkeitsklassen/|Verlässlichkeitsklassen]], zur Konfiguration  vgl. die Anmerkungen und Beispiele unter [[https://www.aai.dfn.de/teilnahme/produktionsbetrieb/|Produktionsbetrieb]]; für [[de:shibidp3config#foederationsmetadaten|Shib IdP 3.x siehe hier]]. 
  • Last modified: 15 months ago