(Optional) Configuring Custom Certificates in Sample Application

CA Adapter Windows Installation Guide › Deploying and Configuring SAML Sample Applications › Configuring Sample Application › (Optional) Configuring Custom Certificates in Sample Application

(Optional) Configuring Custom Certificates in Sample Application

SAML sample application can be configured to use a different set of certificates instead of bundled sample certificates. To configure sample application to use different certificates:

Navigate to the location where you have deployed SAML sample application. For example, navigate to the following location:
AFM_HOME\conf\afm
Open the samlsampleapp.properties file in a text editor.
Configure the properties, as described in the following table.

Property	Description
SamlSigningCertPath	Specify the complete path of the X.509 certificate that will be used to verify the SAML response. The corresponding key store must be used in AFM for signing the SAML response. Note: The certificate must be in .DER format.
SamlSigningPrivateKeyPath	Specify the complete path of the key store file that is used to sign the SAML request. Note: Ensure that the public-private key-pair is generated using "RSA" as key algorithm and "SHA1withRSA" as the signing algorithm.
SamlSigningKeyStoreAlias	Specify an alias of the private key and certificate stored in the key store.
SamlSigningJKSPassword	Specify the password for the key store.

Save and close the samlsampleapp.properties file.
Restart the application server.

Copyright © 2013 CA. All rights reserved.