Versions Compared

Old Version 23

changes.mady.by.user Hans Nordlöf

Saved on

compared with

New Version 46

changes.mady.by.user Pål Axelsson

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Info

SWAMID technical trust is based on publication and validating digitally signed SAML metadata documents.

Table of Contents

SWAMID Signing Certificate

Info

All streams SWAMID metadata feeds are signed with the private key that corresponds with the certificate httphttps://mdmds.swamid.se/md/md-signersigner2.crtwith SHA1 fingerprint: 12:60:D7:09:6A:D9:C1:43:AD:31:88:14:3C:A8:C4:B7:33:8A:4F:CBSHA256 Fingerprint=A6:78:5A:37:C9:C9:0C:25:AD:5F:1F:69:22:EF:76:7B:C9:78:67:67:3A:AF:4F:8B:EA:A1:A7:6D:A3:A8:E5:85.


Code Block
titleCertificate
collapsetrue
Code Block

-----BEGIN CERTIFICATE-----
MIIDdTCCAl0CBEY7EskwDQYJKoZIhvcNAQEEBQAwfzELMAkGA1UEBhMCU0UxEjAQMIIFyzCCA7OgAwIBAgIJAI9LJsUJXDMVMA0GCSqGSIb3DQEBCwUAMHwxCzAJBgNV
BgNVBAgTCVN0b2NraG9sbTESMBAGA1UEBxMJU3RvY2tob2xtMREwDwYDVQQKEwhTBAYTAlNFMRIwEAYDVQQIDAlTdG9ja2hvbG0xEjAQBgNVBAcMCVN0b2NraG9sbTEO
V0FNSS5zZTEPMA0GA1UECxMGU1dBTUlEMSQwIgYDVQQDExtTV0FNSUQgbWV0YWRhMAwGA1UECgwFU1VORVQxDzANBgNVBAsMBlNXQU1JRDEkMCIGA1UEAwwbU1dBTUlE
dGEgc2lnbmVyIHYxLjEwHhcNMDcwNTA0MTEwMjMzWhcNMTcwNTAxMTEwMjMzWjB/IG1ldGFkYXRhIHNpZ25lciB2Mi4wMB4XDTE2MTIwNjA5MjgyMFoXDTM2MTIwNjA5
MQswCQYDVQQGEwJTRTESMBAGA1UECBMJU3RvY2tob2xtMRIwEAYDVQQHEwlTdG9jMjgyMFowfDELMAkGA1UEBhMCU0UxEjAQBgNVBAgMCVN0b2NraG9sbTESMBAGA1UE
a2hvbG0xETAPBgNVBAoTCFNXQU1JLnNlMQ8wDQYDVQQLEwZTV0FNSUQxJDAiBgNVBwwJU3RvY2tob2xtMQ4wDAYDVQQKDAVTVU5FVDEPMA0GA1UECwwGU1dBTUlEMSQw
BAMTG1NXQU1JRCBtZXRhZGF0YSBzaWduZXIgdjEuMTCCASIwDQYJKoZIhvcNAQEBIgYDVQQDDBtTV0FNSUQgbWV0YWRhdGEgc2lnbmVyIHYyLjAwggIiMA0GCSqGSIb3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DQEBAQUAA4ICDwAwggIKAoICAQDQVw72PnIo9QIeV439kQnPcxZh/LddKw86eIU+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=
-----END CERTIFICATE-----

SWAMID Metadata Feeds

Tip

For information about which metadata - feed to use please read Choosing the right SAML metadata URL.


Name

Url

Usage

SWAMID Metadata Query Service

https://mds.swamid.

...

se/

Contains all SWAMID registered and interfederation imported identity providers and service providers.

All implementations that are able to use MDQ shall do so due to that metadata is only downloaded and cached when needed instead of downloading full metadata aggregates.

For Information on how to configure MDQ: IdP or SP

SWAMID Transitive Identity Providers

https://mds.swamid.se/md/swamid-idp-transitive.xml

Contains all SWAMID registered and interfederated identity providers for use by relying parties.

For use by all SWAMID registered service providers that don't use the MDQ protocol.

SWAMID Transitive Service Providershttps://mds.

...

swamid.se/md

...

/swamid-sp-transitive.xml

Contains all SWAMID registered and interfederated service providers for use by relying parties.

For use by all SWAMID registered identity providers that don't use the MDQ protocol.

SWAMID Registered Identity Providers

https://mds.swamid.se/md/swamid-idp.xml

Contains all SWAMID registered identity providers for use by relying parties.

For use by SWAMID registered service providers that must limit identity providers to SWAMID and don't use the MDQ protocol.

SWAMID All Entities

https://mds

Name

Url

Usage

SWAMID 2.0 Main Feed

http://md

.swamid.se/md/swamid-2.0.xml

All SWAMID identity providers and service providers

and relying parties. For use by SWAMID registered identity providers.

SWAMID Registered Identity Providers

http://md.swamid.se/

.


Additional information including certificate and fingerprint for signing key is available at the SWAMID metadata repository.

Display and update SWAMID metadata

The SWAMID Metadata Tool display all metadata registered in or imported into SWAMID from interfederations, i.e. eduGAIN and Fidus. SWAMID registered metadata is updated via tool.

Metadata för SWAMID QA environment

Note

The information published in this section is about the SWAMID QA environment. Information about the production environment is published above!


The SWAMID QA environment is a environment to configure and test identity and service providers before they are registered in the SWAMID production environment.

SWAMID QA Signing Certificate

Info

All SWAMID QA metadata streams are signed with the private key that corresponds with the certificate https://mds.swamid.se/qa/md/swamid-qa.crt with SHA256 Fingerprint=1E:BC:8E:62:0B:C9:3C:EB:C6:E0:7F:9E:34:B8:A1:9F:EA:A9:30:A1:9E:B5:31:B9:44:8B:0F:CC:3B:D9:17:D2.


Code Block
titleCertificate
collapsetrue
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

SWAMID QA Metadata Feeds

Name

Url

Usage

SWAMID QA Metadata Query Service

https://mds.swamid.se/qa/

Contains all SWAMID QA registered identity providers and service providers.

All implementations that are able to use MDQ shall do so due to that metadata is only downloaded and cached when needed instead of downloading full metadata aggregates.

SWAMID QA Identity Providers

https://mds.swamid.se/qa/md/swamid-idp.xml

Contains all SWAMID QA registered identity providers for use by relying parties.

SWAMID Transitive Identity Providers

http

For use by all SWAMID QA registered service providers that don't use the MDQ protocol.

SWAMID QA Service Providershttps://
md
mds.swamid.se/qa/md/swamid-
idp-transitive
sp.xml

Contains all

registered and interfederation-visible identity

SWAMID QA registered service providers for use by relying parties.

For use by all SWAMID QA registered identity providers that don't use the MDQ protocol.

SWAMID QA All Entities

https://mds.swamid.se/qa/md/swamid-qa.xml

All SWAMID QA identity providers and service providers.


Additional information including certficate and fingerprint for signing key is available at the SWAMID QA metadata repository.

Display and update SWAMID QA metadata

The SWAMID QA Metadata Tool display all metadata registered in SWAMID QA. The tool also handles self adminstration of registered entities in the QA environment.