[upki-fed:00430] Re: $B%a%?%G!<%?5-:\$N>ZL@=q99?7<j=g(B(key rollover) IdP$BJT(B

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[upki-fed:00430] Re: $B%a%?%G!<%?5-:\$N>ZL@=q99?7

Subject: [upki-fed:00430] Re: $B%a%?%G!<%?5-:\$N>ZL@=q99?7
Date: Sun, 22 Jan 2012 08:33:48 +0900
From: Takeshi NISHIMURA <xxxxxxx@xxxxxxxxx>

$B@>B<$G$9!#(B

$BCY$/$J$j$^$7$F$9$_$^$;$s!#(B

>> $B?d>)ZL@=q$,M-8z4|8B$r2a$.$k$HHs>o$KLdBj$K$J$k(B
>> $B!J%f!<%6$K7Y9p$,I=<($5$l@h$K?J$a$J$/$J$k!K$?$a!"Aa$a$KM>M5$r$b$C$F$G$-$k(B
>> $B$h$&$K$H$$$&$3$H$G(B1$BF|L\$KF~$l$F$$$^$9!#(B
> 
> IdP $B$N8x3+80$,4|8B@Z$l$K$J$C$?>l9g$K$O!$(BSP $B$J$I$G%(%i!<$K$J$i$J$$$N$G$7$g(B
> $B$&$+(B?

$B$3$N$"$?$j$OI8=`$H$7$FDj$^$C$F$$$J$/$F!"0BA4B&$KE]$7$F1?MQ$7$F$$$k$H$$$&$N$,(B
$Bu$@$H;W$$$^$9!#(B
$BZL@=q$N4|8B$r%A%'%C%/$7$^$;$s!J3XG'%a%?(B
$B%G!<%?$K$=$N>ZL@=q$,EPO?$5$l$F$$$k$3$H$r:,5r$K4|8B$K$+$+$o$i$:?.Mj$5$l$^$9!K!#(B
$B$7$+$73XG'$K;22C$7$F$$$kB>$N(BShibboleth$B$G$J$$(BIdP/SP$B$G$OM-8z4|8B$r%A%'%C%/$7(B
$B$F$$$k$+$b$7$l$:!"$^$?0lHLE*$J>ZL@=q$N2rZL@=q$N99?7$r$*4j$$$7$F$$$kZL@=q$,4|8B@Z$l$N>l9g%a%?%G!<%?$+$i30$9Ey$N5,Dj$O(B
$BB8:_$7$J$$$O$:$G$9!#5U$KM-8z4|8B$K4X$o$i$:>ZL@=q$r?.Mj$7$J$1$l$P$J$i$J$$$H$$$&(B
$B5,Dj$b$"$j$^$;$s!#8=>u$NZL@=q$,$=$N$^$^$K$J$C$F$$$k$3$H$OK>$^$7$/$J$$$H9M$($F$$$^$9!#(B

$B$40U8+$4MWK>Ey$"$j$^$7$?$i$*4s$;$/$@$5$$!#(B

On 2012/01/15, at 10:40, TSUCHIYA Masatoshi wrote:

> $BEZ20$G$9!%(B
> 
>>> On Sat, 14 Jan 2012 11:00:52 +0900
>>> xxxxxxx@xxxxxxxxx (Takeshi NISHIMURA) said as follows:
> 
>>> $BBh(B2$B$K!$(Bapache $B$H(B idp $B$G>ZL@=q$N%$%s%9%H!<%kF|$r$:$i$7$F$$$kM}M3$r65$($F(B
>>> $BD:$1$^$;$s$+!%(B
> 
>> $B3N$+$K!"(BApache$B$N>ZL@=q$H(BIdP/Tomcat$B$N>ZL@=q$OFHN)$7$F$$$^$9$N$G!"$3$3$N=g(B
>> $B=x4X78$OG$0U$G$9!#M-8z4|8B$,@Z$l$k$H$$$&$3$H$G$b$J$1$l$P(Bx+15$BF|L\$K9g$o$;(B
>> $B$F:n6H$7$F$$$?$@$$$FLdBj$"$j$^$;$s!#(B
> 
> $B3NG'$I$&$bM-Fq$&$4$6$$$^$9!%(B
> 
> $BK\3X$N(B IdP $B$G$O!$(B
> 
>    Apache $B$N@_Dj(B
> 	SSLCertificateFile    /etc/ssl/certs/idp.pem
> 	SSLCertificateKeyFile /etc/ssl/private/idp.key
> 
>    IdP $B$N@_Dj(B
>        <security:Credential id="IdPCredential" xsi:type="security:X509Filesystem">
>            <security:PrivateKey>/etc/ssl/private/idp.key</security:PrivateKey>
>            <security:Certificate>/etc/ssl/certs/idp.pem</security:Certificate>
>        </security:Credential>
> 
> $B$H$$$&$h$&$K!$F1$88x3+80$HHkL)80$r;2>H$9$k$h$&$K@_Dj$7$F$$$k(B(= $BF1$8%U%!%$(B
> $B%k$rJ#?t8D=j$KCV$/$N$O;v8N$N85(B)$B$N$G!$@>B<$5$s$N?d>))ZL@=q$,M-8z4|8B$r2a$.$k$HHs>o$KLdBj$K$J$k(B
>> $B!J%f!<%6$K7Y9p$,I=<($5$l@h$K?J$a$J$/$J$k!K$?$a!"Aa$a$KM>M5$r$b$C$F$G$-$k(B
>> $B$h$&$K$H$$$&$3$H$G(B1$BF|L\$KF~$l$F$$$^$9!#(B
> 
> IdP $B$N8x3+80$,4|8B@Z$l$K$J$C$?>l9g$K$O!$(BSP $B$J$I$G%(%i!<$K$J$i$J$$$N$G$7$g(B
> $B$&$+(B?
> 
>>> $BBh(B3$B$K!$3XFb(B SP $B8~$1$K(B key rollover $B1?MQ$9$kI,MW$,$"$k$N$G!$(BSP $B$+$iDs=P(B
>>> $B$5$l$??7>ZL@=q$r!$(BIdP $B$KM=Hw>ZL@=q$H$7$FEPO?$9$kJ}K!$r65$($F$$$?$@$1$J(B
>>> $B$$$G$7$g$&$+!%(B
> 
>> $B?7%a%?%G!<%?$N@8@.J}K!$K$D$$$F$G$9$,!"(B
>> https://www.gakunin.jp/docs/fed/technical/idp/metadata
>> https://www.gakunin.jp/docs/fed/technical/sp/metadata
>> $B$N:G8e$KCm0U=q$-$H$7$F=q$-$^$7$?$h$&$K!"(B<KeyDescriptor>$B$rJB$Y$k7A$G?75l$N(B
>> $B>ZL@=q$rJB$Y$l$P(BOK$B$G$9!#(B
> 
> $B$I$&$bM-Fq$&$4$6$$$^$9!%(BKeyDescriptor $B$r(B2$B$DJB$Y$k$3$H$,$G$-$k$N$G$9$M!%(B
> 
> -- 
> $BEZ20(B $B2mL-(B ( TSUCHIYA Masatoshi )

-- 
$B@>B<7r(B
$B9qN)>pJs3X8&5f=j(B TEL:03-4212-2720

References:

[upki-fed:00425] $B%a%?%G!<%?5-:\$N>ZL@=q99?7
From: Takeshi NISHIMURA

[upki-fed:00427] Re: $B%a%?%G!<%?5-:\$N>ZL@=q99?7
From: TSUCHIYA Masatoshi

[upki-fed:00428] Re: $B%a%?%G!<%?5-:\$N>ZL@=q99?7
From: Takeshi NISHIMURA

[upki-fed:00429] Re: $B%a%?%G!<%?5-:\$N>ZL@=q99?7
From: TSUCHIYA Masatoshi

Prev by Date: [upki-fed:00429] Re: $B%a%?%G!<%?5-:\$N>ZL@=q99?7

Next by Date: [upki-fed:00431] ADFS$B$N(BIdP$B$rMxMQ$7$F%7%\%l%9(BSP$B$X(B$B$NG'>Z$r

Previous by thread: [upki-fed:00429] Re: $B%a%?%G!<%?5-:\$N>ZL@=q99?7

Next by thread: [upki-fed:00461] Re: $B%a%?%G!<%?5-:\$N>ZL@=q99?7

Index(es):

Date

Thread