WebSphere Application Server & Liberty

 View Only

SP-initiated SSO: Encryption/Signing of AuthnRequest

  • 1.  SP-initiated SSO: Encryption/Signing of AuthnRequest

    Posted Wed June 23, 2021 11:45 AM
    I'm implementing SP-initiated SSO under WAS 9.0.5 Traditional. It seems fine up to (1) deployment of WebSphereSamlSp.ear, (2) development of an AuthnRequest creation Java (using the sample code), and (3) configuration of WAS for SSO.

    Our IdP requires AuthnRequest be signed and encrypted using a private key.

    It has no problem to create private/public key pair.

    I have two questions.

    1. Where to store created private/public key pair in WAS?

    2. How to encrypt/sign AuthnRequest xml using the stored private key?

    Appreciate any advices in advance.

    T-San
    Tokyo, Japan

    ------------------------------
    Shoichiro Takeshita
    ------------------------------