Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision		 Previous revision
Next revisionBoth sides next revision
en:metadata [2017/03/13 10:23] Wolfgang Pempeen:metadata [2019/07/24 11:11] Wolfgang Pempe
Line 1: Line 1:
 ====== Metadata ====== ====== Metadata ======
-\\ 
-==== Certificate for Signature Validation - DFN-PKI Generation 2 (new)==== 
  
-The signed metadata of the **DFN-AAI Test Federation:** \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-test-metadata.xml+==== DFN-PKI Generation 2 Certificate for Signature Validation (new) ====
  
-The signed metadata of the **DFN-AAI Basic Federation:** (file comprises all DFN-AAI IdPs)\\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-basic-metadata.xml+<wrap important round>**Important**
  
-The signed metadata of the **DFN-AAI Advanced Federation:**  \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-metadata.xml+These links are case-sensitive! HTTPS is supported.
  
-Signed metadata file with all **Service Providers in DFN-AAI (for IdPs):** \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-sp-metadata.xml+</wrap>
  
-The signed metadata for participation of **IdPs in [[https://www.aai.dfn.de/teilnahme/interfederation/|eduGAIN]]** (file comprises all SPs available via eduGAIN): \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+sp-metadata.xml+The signed metadata of the **DFN-AAI Test Federation:** \\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-test-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-test-metadata.xml]]
  
-The signed metadata for participation of **SPs in [[https://www.aai.dfn.de/teilnahme/interfederation/|eduGAIN]]** (file comprises all IdPs available via eduGAIN): \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+idp-metadata.xml+The signed metadata of the **DFN-AAI Basic Federation:** (file comprises all DFN-AAI production IdPs)\\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-basic-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-basic-metadata.xml]]
  
-The **DFN-AAI certificate** (PEM format) for validating the signature(s) of DFN-AAI metadata (SHA256 fingerprint: D4:1A:66:79:E0:2A:05:BF:8A:2C:CA:24:6D:97:C1:CB:29:B8:53:ED:30:D8:C9:70:91:4F:92:E2:70:C2:8D:36): \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.g2.pem +The signed metadata of the **DFN-AAI Advanced Federation:** \\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-metadata.xml]]
  
-\\+Signed metadata file with all production **Service Providers in DFN-AAI (for IdPs):** \\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-sp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-sp-metadata.xml]]
  
-==== Zertifikat zur Signaturvalidierung aus DFN-PKI Generation 1 (alt)====+The signed metadata for participation of **IdPs in [[:de:edugain|eduGAIN]]** (file comprises all SPs available via eduGAIN):\\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+sp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+sp-metadata.xml]]
  
-Die signierten Metadaten der **DFN-AAI-Test-Föderation:** \\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Test-metadata.xml+The signed metadata for participation of **SPs in [[:de:edugain|eduGAIN]]** (file comprises all IdPs available via eduGAIN):\\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+idp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+idp-metadata.xml]]
  
-Die signierten Metadaten der **DFN-AAI-Basic-Föderation:** (alle produktiven IdPs enthalten)\\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Basic-metadata.xml+**Local metadata:** [[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-local-999-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-local-999-metadata.xml]] ("999" has to be replaced with an organization-specific number. Please refer to [[:de:metadata_local|Lokale Metadaten]])
  
-Die signierten Metadaten der **DFN-AAI-Advanced-Föderation:**  \\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-metadata.xml+The **DFN-AAI certificate** (PEM format) for validating the signature(s) of DFN-AAI metadata (SHA256 fingerprint: D4:1A:66:79:E0:2A:05:BF:8A:2C:CA:24:6D:97:C1:CB:29:B8:53:ED:30:D8:C9:70:91:4F:92:E2:70:C2:8D:36):\\ 
 +[[https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.g2.pem|https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.g2.pem]]
  
-Signierter Metadatensatz, der alle **produktiven Service Provider der DFN-AAI enthält (für IdPs):** \\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-sp-metadata.xml+<wrap important round>**Important**
  
-Die signierten Metadaten für die Teilnahme von **IdPs in [[https://www.aai.dfn.de/teilnahme/interfederation/|eduGAIN]]** (enthalten die über eduGAIN verfügbaren SPs): \\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+sp-metadata.xml+Please refer to [[de:production#metadataprovider|this page]] for configuration examples for Shibboleth IdP und SP.
  
-Die signierten Metadaten für die Teilnahme von **SPs in [[https://www.aai.dfn.de/teilnahme/interfederation/|eduGAIN]]** (enthalten die über eduGAIN verfügbaren IdPs): \\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+idp-metadata.xml+</wrap>
  
-Das **DFN-AAI Zertifikat** im PEM-Format zur Überprüfung der Signatur der DFN-AAI Metadaten (SHA256 Fingerprint: D3:3E:0F:3C:C9:43:1F:A0:0C:14:97:86:30:E3:5F:72:39:56:2C:98:85:69:2D:52:63:1C:86:78:35:90:4F:5C): \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.pem +==== DFN-PKI Generation 1 Certificate for Signature Validation (old) ==== 
-\\ Fingerprint ab 20März 2017: 7B:44:E1:64:B4:6C:46:7D:82:07:BC:C1:BB:30:B8:64:11:2B:D2:73:09:47:32:CC:B2:20:2E:4A:33:5C:92:64+<callout type="danger" title="Warning"> 
 +**The end of life of DFN-PKI Generation 1 [[https://blog.pki.dfn.de/2018/12/ablauf-der-alten-generation-1-der-dfn-pki-global/|is scheduled for 2019-07-09!]] \\ 
 +Only use Generation 2 metadata URLs! (see above)**   
 +</callout> 
 +<del>The signed metadata of the **DFN-AAI Test Federation:** \\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Test-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Test-metadata.xml]]
  
-\\+The signed metadata of the **DFN-AAI Basic Federation:** (file comprises all DFN-AAI production IdPs)\\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Basic-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Basic-metadata.xml]]
  
 +The signed metadata of the **DFN-AAI Advanced Federation:** \\
 +[[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-metadata.xml]]
 +
 +Signed metadata file with all production **Service Providers in DFN-AAI (for IdPs):** \\
 +[[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-sp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-sp-metadata.xml]]
 +
 +The signed metadata for participation of **IdPs in [[:de:edugain|eduGAIN]]** (file comprises all SPs available via eduGAIN):\\
 +[[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+sp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+sp-metadata.xml]]
 +
 +The signed metadata for participation of **SPs in [[:de:edugain|eduGAIN]]** (file comprises all IdPs available via eduGAIN):\\
 +[[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+idp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+idp-metadata.xml]]
 +
 +**Local metadata:** [[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Local-999-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Local-999-metadata.xml]] ("999" has to be replaced with an organization-specific number. Please refer to [[:de:metadata_local|Lokale Metadaten]])
 +
 +The **DFN-AAI certificate** (PEM format) for validating the signature(s) of DFN-AAI metadata (SHA256 fingerprint: D3:3E:0F:3C:C9:43:1F:A0:0C:14:97:86:30:E3:5F:72:39:56:2C:98:85:69:2D:52:63:1C:86:78:35:90:4F:5C):\\
 +[[https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.pem|https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.pem]]\\
 +fingerprint after March 20, 2017: 7B:44:E1:64:B4:6C:46:7D:82:07:BC:C1:BB:30:B8:64:11:2B:D2:73:09:47:32:CC:B2:20:2E:4A:33:5C:92:64
 +</del>
 ==== Additional Information ==== ==== Additional Information ====
  
-Zur Unterscheidung zwischen "Advanced" und "Basic" siehe die Erläuterungen zu den [[https://www.aai.dfn.de/der-dienst/verlaesslichkeitsklassen/|Verlässlichkeitsklassen]], zur Konfiguration  vgldie Anmerkungen und Beispiele unter [[https://www.aai.dfn.de/teilnahme/produktionsbetrieb/|Produktionsbetrieb]]; für [[de:shibidp3config#foederationsmetadaten|Shib IdP 3.x siehe hier]].+For the difference between the "Advanced" and "Basic" federations/metadata please refer to the explanatory notes on the [[https://www.aai.dfn.de/en/der-dienst/degrees-of-reliance/|Degrees of Reliance]]. For configuration examples cf. [[:de:production|'Produktionsbetrieb']] and [[:de:shibidp3config-metadata|Shib IdP 3.x metadata configuration]]. 
 + 
  • Last modified: 15 months ago