[keycloak-user] Differences between SAML descriptors
Muein Muzamil
shmuein+keycloak-dev at gmail.com
Fri Feb 3 17:58:13 EST 2017
You are right that we can use Client-specific metadata but the Issue is
that to be able to download the client tailored metadata, you first need to
create a client in keyCloak to generate this. In some cases, SPs directly
allows you to import IDP meta-data. So we have to use the generic metadata
in that case.
Regards,
Muein
On Fri, Feb 3, 2017 at 3:24 PM, mj <lists at merit.unu.edu> wrote:
> Hi,
>
> On 02/03/2017 09:23 PM, Muein Muzamil wrote:
> > When we try to upload this metadata (downloaded from the public URL) to
> > PingOne, it doesn't like it (metadata from installation tab works fine).
> Is
> > there any reason for this?
>
> Just to say: we too. We don't know PingOne, but for a saml SP we are
> using, only the client-specific metadata file from the installation tab
> works.
>
> Took quite a while to notice that...
>
> Have a nice weekend,
> MJ
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
More information about the keycloak-user
mailing list