Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision		 Previous revision
Last revisionBoth sides next revision
en:metadata [2019/07/24 11:20] Wolfgang Pempeen:metadata [2023/02/07 09:33] Wolfgang Pempe
Line 1: Line 1:
 ====== Metadata ====== ====== Metadata ======
- +<callout type="primary" title="Important Notes">
-==== DFN-PKI Generation 2 Certificate for Signature Validation (new) ==== +
- +
-<callout type="primary" title"Important Notes">+
   * These URLs are case-sensitive, i.e. lower case is important!   * These URLs are case-sensitive, i.e. lower case is important!
   * HTTPS is supported.   * HTTPS is supported.
Line 10: Line 7:
  
 The signed metadata of the **DFN-AAI Test Federation:** \\ The signed metadata of the **DFN-AAI Test Federation:** \\
-[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-test-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-test-metadata.xml]]+[[http://www.aai.dfn.de/metadata/dfn-aai-test-metadata.xml|http://www.aai.dfn.de/metadata/dfn-aai-test-metadata.xml]]
  
-The signed metadata of the **DFN-AAI Basic Federation:** (file comprises all DFN-AAI production IdPs)\\ +Signed metadata file with all production **Service Providers in DFN-AAI (for IdPs):** \\ 
-[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-basic-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-basic-metadata.xml]]+[[http://www.aai.dfn.de/metadata/dfn-aai-sp-metadata.xml|http://www.aai.dfn.de/metadata/dfn-aai-sp-metadata.xml]]
  
-The signed metadata of the **DFN-AAI Advanced Federation:** \\ +Signed metadata file with all production **Identity Providers in DFN-AAI (for SPs):** \\ 
-[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-metadata.xml]] +[[http://www.aai.dfn.de/metadata/dfn-aai-idp-metadata.xml|http://www.aai.dfn.de/metadata/dfn-aai-idp-metadata.xml]]
- +
-Signed metadata file with all production **Service Providers in DFN-AAI (for IdPs):** \\ +
-[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-sp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-sp-metadata.xml]]+
  
 The signed metadata for participation of **IdPs in [[:de:edugain|eduGAIN]]** (file comprises all SPs available via eduGAIN):\\ The signed metadata for participation of **IdPs in [[:de:edugain|eduGAIN]]** (file comprises all SPs available via eduGAIN):\\
-[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+sp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+sp-metadata.xml]]+[[http://www.aai.dfn.de/metadata/dfn-aai-edugain+sp-metadata.xml|http://www.aai.dfn.de/metadata/dfn-aai-edugain+sp-metadata.xml]]
  
 The signed metadata for participation of **SPs in [[:de:edugain|eduGAIN]]** (file comprises all IdPs available via eduGAIN):\\ The signed metadata for participation of **SPs in [[:de:edugain|eduGAIN]]** (file comprises all IdPs available via eduGAIN):\\
-[[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+idp-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+idp-metadata.xml]]+[[http://www.aai.dfn.de/metadata/dfn-aai-edugain+idp-metadata.xml|http://www.aai.dfn.de/metadata/dfn-aai-edugain+idp-metadata.xml]]
  
-**Local metadata:** [[http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-local-999-metadata.xml|http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-local-999-metadata.xml]] ("999" has to be replaced with an organization-specific number. Please refer to [[:de:metadata_local|Lokale Metadaten]])+**Local metadata:** [[http://www.aai.dfn.de/metadata/dfn-aai-local-999-metadata.xml|http://www.aai.dfn.de/metadata/dfn-aai-local-999-metadata.xml]] ("999" has to be replaced with an organization-specific number. Please refer to [[:en:metadata_local|Local Metadata]])
  
-The **DFN-AAI certificate** (PEM format) for validating the signature(s) of DFN-AAI metadata (SHA256 fingerprintD4:1A:66:79:E0:2A:05:BF:8A:2C:CA:24:6D:97:C1:CB:29:B8:53:ED:30:D8:C9:70:91:4F:92:E2:70:C2:8D:36):\\ +**Certificate for validating the signature(s) of DFN-AAI metadata** (PEM format) \\ 
-[[https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.g2.pem|https://www.aai.dfn.de/fileadmin/metadata/dfn-aai.g2.pem]]+SHA256 Fingerprint77:2D:24:F6:3F:5F:76:DD:F8:B5:7E:69:59:8D:25:33:BA:99:BB:15:01:CB:6C:B3:5D:A9:1A:85:2E:AB:EE:5F \\ 
 +https://www.aai.dfn.de/metadata/dfn-aai.pem 
  
-==== Additional Information ====+<callout type="primary" title="New Certificate for signature validation as of February, 7th, 2023, 14:00 CET">  
 +SHA256 Fingerprint 4D:DA:3F:88:EF:E9:E1:AA:E6:E3:EE:3C:B0:63:8A:ED:51:3C:A8:9A:03:AD:94:96:A2:2E:B5:F1:75:FB:21:48 \\  
 +https://download.aai.dfn.de/tmp/dfn-aai.pem (temporary location)  
 +</callout>
  
-For the difference between the "Advanced" and "Basic" federations/metadata please refer to the explanatory notes on the [[https://www.aai.dfn.de/en/der-dienst/degrees-of-reliance/|Degrees of Reliance]]. For configuration examples cf. [[:de:production|'Produktionsbetrieb']] and [[:de:shibidp3config-metadata|Shib IdP 3.x metadata configuration]].+==== Additional Information ====
  
 +For configuration examples cf. [[:en:production|'Production Environment']], [[de:shibidp:config-metadata|Shib IdP]] (de) and [[de:shibsp#shibboleth_sp_3x|Shib SP 3.x]] metadata configuration.
  
 +{{tag>lokale-metadaten metadata}}
  • Last modified: 15 months ago