Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision		 Previous revision
Next revisionBoth sides next revision
en:metadata [2017/03/13 11:53] – [Additional Information] Wolfgang Pempeen:metadata [2019/07/24 11:11] Wolfgang Pempe
Line 1: Line 1:
 ====== Metadata ====== ====== Metadata ======
-\\ 
-==== Certificate for Signature Validation - DFN-PKI Generation 2 (new)==== 
  
-The signed metadata of the **DFN-AAI Test Federation:** \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-test-metadata.xml+==== DFN-PKI Generation 2 Certificate for Signature Validation (new) ====
  
-The signed metadata of the **DFN-AAI Basic Federation:** (file comprises all DFN-AAI production IdPs)\\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-basic-metadata.xml+<wrap important round>**Important**
  
-The signed metadata of the **DFN-AAI Advanced Federation:**  \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-metadata.xml+These links are case-sensitive! HTTPS is supported.
  
-Signed metadata file with all production **Service Providers in DFN-AAI (for IdPs):** \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-sp-metadata.xml+</wrap>
  
-The signed metadata for participation of **IdPs in [[https://www.aai.dfn.de/teilnahme/interfederation/|eduGAIN]]** (file comprises all SPs available via eduGAIN): \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+sp-metadata.xml+The signed metadata of the **DFN-AAI Test Federation:** \\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-test-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-test-metadata.xml]]
  
-The signed metadata for participation of **SPs in [[https://www.aai.dfn.de/teilnahme/interfederation/|eduGAIN]]** (file comprises all IdPs available via eduGAIN): \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+idp-metadata.xml+The signed metadata of the **DFN-AAI Basic Federation:** (file comprises all DFN-AAI production IdPs)\\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-basic-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-basic-metadata.xml]]
  
-The **DFN-AAI certificate** (PEM format) for validating the signature(s) of DFN-AAI metadata (SHA256 fingerprint: D4:1A:66:79:E0:2A:05:BF:8A:2C:CA:24:6D:97:C1:CB:29:B8:53:ED:30:D8:C9:70:91:4F:92:E2:70:C2:8D:36): \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.g2.pem +The signed metadata of the **DFN-AAI Advanced Federation:** \\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-metadata.xml]]
  
-\\+Signed metadata file with all production **Service Providers in DFN-AAI (for IdPs):** \\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-sp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-sp-metadata.xml]]
  
-==== Certificate for Signature Validation - DFN-PKI Generation 1 (old)====+The signed metadata for participation of **IdPs in [[:de:edugain|eduGAIN]]** (file comprises all SPs available via eduGAIN):\\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+sp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+sp-metadata.xml]]
  
-The signed metadata of the **DFN-AAI Test Federation:** \\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Test-metadata.xml+The signed metadata for participation of **SPs in [[:de:edugain|eduGAIN]]** (file comprises all IdPs available via eduGAIN):\\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+idp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+idp-metadata.xml]]
  
-The signed metadata of the **DFN-AAI Basic Federation:** (file comprises all DFN-AAI production IdPs)\\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Basic-metadata.xml+**Local metadata:** [[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-local-999-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-local-999-metadata.xml]] ("999" has to be replaced with an organization-specific number. Please refer to [[:de:metadata_local|Lokale Metadaten]])
  
-The signed metadata of the **DFN-AAI Advanced Federation:**\\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-metadata.xml+The **DFN-AAI certificate** (PEM format) for validating the signature(s) of DFN-AAI metadata (SHA256 fingerprint: D4:1A:66:79:E0:2A:05:BF:8A:2C:CA:24:6D:97:C1:CB:29:B8:53:ED:30:D8:C9:70:91:4F:92:E2:70:C2:8D:36):\\ 
 +[[https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.g2.pem|https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.g2.pem]]
  
-Signed metadata file with all production **Service Providers in DFN-AAI (for IdPs):** \\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-sp-metadata.xml+<wrap important round>**Important**
  
-The signed metadata for participation of **IdPs in [[https://www.aai.dfn.de/teilnahme/interfederation/|eduGAIN]]** (file comprises all SPs available via eduGAIN): \\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+sp-metadata.xml+Please refer to [[de:production#metadataprovider|this page]] for configuration examples for Shibboleth IdP und SP.
  
-The signed metadata for participation of **SPs in [[https://www.aai.dfn.de/teilnahme/interfederation/|eduGAIN]]** (file comprises all IdPs available via eduGAIN): \\ https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+idp-metadata.xml+</wrap>
  
-The **DFN-AAI certificate** (PEM format) for validating the signature(s) of DFN-AAI metadata (SHA256 fingerprint: D3:3E:0F:3C:C9:43:1F:A0:0C:14:97:86:30:E3:5F:72:39:56:2C:98:85:69:2D:52:63:1C:86:78:35:90:4F:5C): \\ https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.pem +==== DFN-PKI Generation 1 Certificate for Signature Validation (old) ==== 
-\\ fingerprint after March 20, 2017: 7B:44:E1:64:B4:6C:46:7D:82:07:BC:C1:BB:30:B8:64:11:2B:D2:73:09:47:32:CC:B2:20:2E:4A:33:5C:92:64+<callout type="danger" title="Warning"> 
 +**The end of life of DFN-PKI Generation 1 [[https://blog.pki.dfn.de/2018/12/ablauf-der-alten-generation-1-der-dfn-pki-global/|is scheduled for 2019-07-09!]] \\ 
 +Only use Generation 2 metadata URLs! (see above)**   
 +</callout> 
 +<del>The signed metadata of the **DFN-AAI Test Federation:** \\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Test-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Test-metadata.xml]]
  
-\\+The signed metadata of the **DFN-AAI Basic Federation:** (file comprises all DFN-AAI production IdPs)\\ 
 +[[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Basic-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Basic-metadata.xml]]
  
 +The signed metadata of the **DFN-AAI Advanced Federation:** \\
 +[[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-metadata.xml]]
 +
 +Signed metadata file with all production **Service Providers in DFN-AAI (for IdPs):** \\
 +[[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-sp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-sp-metadata.xml]]
 +
 +The signed metadata for participation of **IdPs in [[:de:edugain|eduGAIN]]** (file comprises all SPs available via eduGAIN):\\
 +[[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+sp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+sp-metadata.xml]]
 +
 +The signed metadata for participation of **SPs in [[:de:edugain|eduGAIN]]** (file comprises all IdPs available via eduGAIN):\\
 +[[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+idp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-eduGAIN+idp-metadata.xml]]
 +
 +**Local metadata:** [[http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Local-999-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Local-999-metadata.xml]] ("999" has to be replaced with an organization-specific number. Please refer to [[:de:metadata_local|Lokale Metadaten]])
 +
 +The **DFN-AAI certificate** (PEM format) for validating the signature(s) of DFN-AAI metadata (SHA256 fingerprint: D3:3E:0F:3C:C9:43:1F:A0:0C:14:97:86:30:E3:5F:72:39:56:2C:98:85:69:2D:52:63:1C:86:78:35:90:4F:5C):\\
 +[[https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.pem|https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.pem]]\\
 +fingerprint after March 20, 2017: 7B:44:E1:64:B4:6C:46:7D:82:07:BC:C1:BB:30:B8:64:11:2B:D2:73:09:47:32:CC:B2:20:2E:4A:33:5C:92:64
 +</del>
 ==== Additional Information ==== ==== Additional Information ====
  
-For the difference between the "Advanced" and "Basic" federations/metadata please refer to the explanatory notes on the [[https://www.aai.dfn.de/en/der-dienst/degrees-of-reliance/|Degrees of Reliance]]. For configuration examples cf. [[https://www.aai.dfn.de/teilnahme/produktionsbetrieb/|'Produktionsbetrieb']] and [[de:shibidp3config-metadata|Shib IdP 3.x metadata configuration]].+For the difference between the "Advanced" and "Basic" federations/metadata please refer to the explanatory notes on the [[https://www.aai.dfn.de/en/der-dienst/degrees-of-reliance/|Degrees of Reliance]]. For configuration examples cf. [[:de:production|'Produktionsbetrieb']] and [[:de:shibidp3config-metadata|Shib IdP 3.x metadata configuration]]. 
 + 
  • Last modified: 15 months ago