Previous Topic: Performing Basic AFM Configurations Using Sample ApplicationNext Topic: Configuring the Service Provider’s Application

CA Adapter UNIX Installation Guide(Optional) Configuring Custom Certificates in Sample Application

(Optional) Configuring Custom Certificates in Sample Application

SAML sample application can be configured to use a different set of certificates instead of bundled sample certificates. To configure sample application to use different certificates:

  1. Navigate to the location where you have deployed SAML sample application. For example, navigate to the following location:

    AFM_HOME/conf/afm

  2. Open the samlsampleapp.properties file in a text editor.
  3. Configure the properties, as described in the following table:

Property

Description

SamlSigningCertPath

Specify the complete path of the X.509 certificate that will be used to verify the SAML response. The corresponding key store must be used in AFM for signing the SAML response.

Note: The certificate must be in .DER format.

SamlSigningPrivateKeyPath

Specify the complete path of the key store file that is used to sign the SAML request.

Note: Ensure that the public-private key-pair is generated using "RSA" as the key algorithm and "SHA1withRSA" as the signing algorithm.

SamlSigningKeyStoreAlias

Specify an alias of the private key and certificate stored in the key store.

SamlSigningJKSPassword

Specify the password for the key store.
  1. Save and close the samlsampleapp.properties file.
  2. Restart the application server.