[英]Can I Use the same certificate for Token Security and Protocol Security in SAML2?
Can I use the same certificate issued by a certificate authority to sign the security token of SAML assertion and also for HTTPS SSL on IIS ? 我可以使用由证书颁发机构颁发的同一证书来签署SAML声明的安全令牌,也可以对IIS上的HTTPS SSL签名吗?
I am using ColdFusion to create the SAML Response and used Java Keytool to create the certifcate. 我正在使用ColdFusion创建SAML响应,并使用Java Keytool创建了证书。
Can you? 你是否可以? Yes.
是。 Should you?
应该吗 No. It's better to use a self - signed cert than to share them.
不可以。使用自签名证书比共享它们更好。 I can't tell you the number of times I've seen an admin screw up and send out their private key for their HTTPS cert.
我无法告诉您我看到管理员搞砸了多少次,并为他们的HTTPS证书发送了私钥。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.