auth.admin.saml.keystore-path
Background
Set to the location of the java keystore which is used to store
the private key Funnelback will use for SAML communications.
For example $SEARCH_HOME/conf/samlAdminKeystore.jks.
http://docs.spring.io/spring-security-saml/docs/1.0.2.RELEASE/reference/html/security.html
provides details on how this keystore can be created with java’s 'keytool'
utility. This documentation also covers the creation of the private
key described in auth.admin.saml.key-password, and configuring trust of
certificates presented by other systems for SAML usage.
keytool may generate SHA-1 keys by default, which is considered
deprecated and may not work with all identity providers. Make sure you choose
an appropriate algorithm when creating keys with keytool.
|
Setting the key
Set this configuration key in the server configuration.
Use the configuration key editor to add or edit the auth.admin.saml.keystore-path key, and set the value. This can be set to any valid File value.
See also
-
Specify the SAML identity provider’s metadata URL (Admin interface).
-
Specify the URL to log users out of the IdP (Admin interface).
-
Specify the prefix for the SAML entity ID (Admin interface).
-
Specify the alias of private key to use in SAML keystore (Admin interface).
-
Specify the password for private key in SAML keystore (Admin interface).
-
Specify the location of the Groovy class which maps SAML users to their permissions.
-
Specify the default URL to navigate to after an IdP initiated SSO login. (Admin interface)