fedsp-util
The fedsp-util program is executed by the Scenario.hid_authchain_saml_sp component to generate a PFX signing certificate and public certificate pair.
Usage
fedsp-util.exe -pfx <pfxfile> -pass <password> -cert-subject <subject> -root-subject <subject> -years <years> -certfile <certfile> [-echopwd] [-silent]
Argument | Description |
|---|---|
-cert-subject <subject> | Subject of the SAML SP document signing certificate (e.g. "BravuraSecuritySpSaml") (required). |
-certfile <filename> | Public certificate output filename (.cer format) (required). |
-echopwd | Report back (on standard out) the encrypted pfx password. |
-pass <password> | The encryption password used by the PFX (Personal Information Exchange) file (required). |
-pfx <pfxfile> | Signing certificate in PFX (Personal Information Exchange) format (required). |
-root-subject <subject> | Subject of the self-signed root certificate (e.g. "BravuraSecuritySpRoot") (required). |
-years <years> | Number of years the certificate is valid for. Must be a positive number.(required). |
-silent | Suppress success messages. |
Example
Generate a new PFX and public certificate:
fedsp-util.exe -cert-subject BravuraSecuritySpSaml -root-subject BravuraSecuritySpRoot -pfx ..\sp\saml.pfx -years 3 -pass p455w0rD -certfile ..\sp\public.cer
See also:
See Authentication chains: SAML for more information on the SAML authentication framework.