Skip to content

auth.admin.saml.keystore-path

Specify the location of the SAML keystore (Admin interface).

Key: auth.admin.saml.keystore-path
Type: File
Can be set in: global.cfg

Description

Set to the location of the java keystore which is used to store the private key Funnelback will use for SAML communications. For example $SEARCH_HOME/conf/samlAdminKeystore.jks.

http://docs.spring.io/spring-security-saml/docs/1.0.2.RELEASE/reference/html/security.html provides details on how this keystore can be created with java's 'keytool' utility. This documentation also covers the creation of the private key described in auth.admin.saml.key-password, and configuring trust of certificates presented by other systems for SAML usage.

Warning: keytool may generate SHA-1 keys by default, which is considered deprecated and may not work with all identity providers. Make sure you choose an appropriate algorithm when creating keys with keytool.

⚠ Caveats

This setting requires Jetty to be restarted to take effect.

See Also

top

Funnelback logo
v15.18.0