Skip to Content.

edugain-discuss - [eduGAIN-discuss] reference for expired certificate warning

edugain-discuss AT

Subject: An open discussion list for topics related to the eduGAIN interfederation service.

List archive

[eduGAIN-discuss] reference for expired certificate warning

Chronological Thread 
  • From: "Zenon Mousmoulas" <zmousm AT>
  • To: edugain-discuss AT
  • Subject: [eduGAIN-discuss] reference for expired certificate warning
  • Date: Tue, 19 Nov 2019 08:37:27 +0000


could someone help with this question:

What is the basis for validator warnings about expired signing/encryption
certificates found in metadata?

It is mentioned in BCP as a low significance condition:

It is also mentioned in SAML2 MetaIOP §2.5.1: "it is RECOMMENDED that
certificates be unexpired" (yet preceded by an explicit statement that this
does not matter).

The former is referenced by eduGAIN SAML Profile §4:

Is there anything else I am missing?


Archive powered by MHonArc 2.6.19.

Top of Page