Support of SHA256 as signing algorithm

classic Classic list List threaded Threaded
4 messages Options
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Support of SHA256 as signing algorithm

Sandeep Roy

Hi Team,

 

Does anybody know how can we have openam to use SHA256 as SAML signing algorithm ?

 

OpenAM 13.0

 

Thanks,

Sandeep Roy

 


_______________________________________________
Visit the OpenAM forum at https://forgerock.org/forum/fr-projects/openam/
OpenAM mailing list
[hidden email]
https://lists.forgerock.org/mailman/listinfo/openam
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Support of SHA256 as signing algorithm

Bernhard Thalmayr
RSA, DSA or EC private key?

-Bernhard

Am 30/05/16 um 17:19 schrieb Sandeep Roy:

> Hi Team,
>
>  
>
> Does anybody know how can we have openam to use SHA256 as SAML signing
> algorithm ?
>
>  
>
> OpenAM 13.0
>
>  
>
> Thanks,
>
> Sandeep Roy
>
>  
>
>
>
> _______________________________________________
> Visit the OpenAM forum at https://forgerock.org/forum/fr-projects/openam/
> OpenAM mailing list
> [hidden email]
> https://lists.forgerock.org/mailman/listinfo/openam
>


--
Painstaking Minds
IT-Consulting Bernhard Thalmayr
Herxheimer Str. 5, 83620 Vagen (Munich area), Germany
Tel: +49 (0)8062 7769174
Mobile: +49 (0)176 55060699

[hidden email] - Solution Architect
http://www.xing.com/profile/Bernhard_Thalmayr
http://de.linkedin.com/in/bernhardthalmayr

This e-mail may contain confidential and/or privileged information.If
you are not the intended recipient (or have received this email in
error) please notify the sender immediately and delete this e-mail. Any
unauthorized copying, disclosure or distribution of the material in this
e-mail is strictly forbidden.
_______________________________________________
Visit the OpenAM forum at https://forgerock.org/forum/fr-projects/openam/
OpenAM mailing list
[hidden email]
https://lists.forgerock.org/mailman/listinfo/openam
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Support of SHA256 as signing algorithm

Sandeep Roy
RSA

Thanks,
Sandeep Roy

-----Original Message-----
From: [hidden email] [mailto:[hidden email]] On Behalf Of Bernhard Thalmayr
Sent: Thursday, June 02, 2016 1:00 PM
To: [hidden email]
Subject: Re: [OpenAM] Support of SHA256 as signing algorithm

RSA, DSA or EC private key?

-Bernhard

Am 30/05/16 um 17:19 schrieb Sandeep Roy:

> Hi Team,
>
>  
>
> Does anybody know how can we have openam to use SHA256 as SAML signing
> algorithm ?
>
>  
>
> OpenAM 13.0
>
>  
>
> Thanks,
>
> Sandeep Roy
>
>  
>
>
>
> _______________________________________________
> Visit the OpenAM forum at
> https://forgerock.org/forum/fr-projects/openam/
> OpenAM mailing list
> [hidden email]
> https://lists.forgerock.org/mailman/listinfo/openam
>


--
Painstaking Minds
IT-Consulting Bernhard Thalmayr
Herxheimer Str. 5, 83620 Vagen (Munich area), Germany
Tel: +49 (0)8062 7769174
Mobile: +49 (0)176 55060699

[hidden email] - Solution Architect http://www.xing.com/profile/Bernhard_Thalmayr
http://de.linkedin.com/in/bernhardthalmayr

This e-mail may contain confidential and/or privileged information.If you are not the intended recipient (or have received this email in
error) please notify the sender immediately and delete this e-mail. Any unauthorized copying, disclosure or distribution of the material in this e-mail is strictly forbidden.
_______________________________________________
Visit the OpenAM forum at https://forgerock.org/forum/fr-projects/openam/
OpenAM mailing list
[hidden email]
https://lists.forgerock.org/mailman/listinfo/openam
_______________________________________________
Visit the OpenAM forum at https://forgerock.org/forum/fr-projects/openam/
OpenAM mailing list
[hidden email]
https://lists.forgerock.org/mailman/listinfo/openam
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Support of SHA256 as signing algorithm

Bernhard Thalmayr
OpenAM console:

Configuration -> global -> Common Federation Configuration -> XML
signature algorithm

select http://www.w3.org/2001/04/xmldsig-more#rsa-sha256


ssoadm:

ssoadm set-attr-defs -u amadmin -f PATH_TO_PWD -s sunFAMFederationCommon
-t global -D
"SignatureAlgorithm=http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"

restart OpenAM

-Bernhard

P.S. this is for Browser POST binding as you did not tell which binding
you use.

Am 03/06/16 um 06:56 schrieb Sandeep Roy:

> RSA
>
> Thanks,
> Sandeep Roy
>
> -----Original Message-----
> From: [hidden email] [mailto:[hidden email]] On Behalf Of Bernhard Thalmayr
> Sent: Thursday, June 02, 2016 1:00 PM
> To: [hidden email]
> Subject: Re: [OpenAM] Support of SHA256 as signing algorithm
>
> RSA, DSA or EC private key?
>
> -Bernhard
>
> Am 30/05/16 um 17:19 schrieb Sandeep Roy:
>> Hi Team,
>>
>>  
>>
>> Does anybody know how can we have openam to use SHA256 as SAML signing
>> algorithm ?
>>
>>  
>>
>> OpenAM 13.0
>>
>>  
>>
>> Thanks,
>>
>> Sandeep Roy
>>
>>  
>>
>>
>>
>> _______________________________________________
>> Visit the OpenAM forum at
>> https://forgerock.org/forum/fr-projects/openam/
>> OpenAM mailing list
>> [hidden email]
>> https://lists.forgerock.org/mailman/listinfo/openam
>>
>
>
> --
> Painstaking Minds
> IT-Consulting Bernhard Thalmayr
> Herxheimer Str. 5, 83620 Vagen (Munich area), Germany
> Tel: +49 (0)8062 7769174
> Mobile: +49 (0)176 55060699
>
> [hidden email] - Solution Architect http://www.xing.com/profile/Bernhard_Thalmayr
> http://de.linkedin.com/in/bernhardthalmayr
>
> This e-mail may contain confidential and/or privileged information.If you are not the intended recipient (or have received this email in
> error) please notify the sender immediately and delete this e-mail. Any unauthorized copying, disclosure or distribution of the material in this e-mail is strictly forbidden.
> _______________________________________________
> Visit the OpenAM forum at https://forgerock.org/forum/fr-projects/openam/
> OpenAM mailing list
> [hidden email]
> https://lists.forgerock.org/mailman/listinfo/openam
> _______________________________________________
> Visit the OpenAM forum at https://forgerock.org/forum/fr-projects/openam/
> OpenAM mailing list
> [hidden email]
> https://lists.forgerock.org/mailman/listinfo/openam
>


--
Painstaking Minds
IT-Consulting Bernhard Thalmayr
Herxheimer Str. 5, 83620 Vagen (Munich area), Germany
Tel: +49 (0)8062 7769174
Mobile: +49 (0)176 55060699

[hidden email] - Solution Architect
http://www.xing.com/profile/Bernhard_Thalmayr
http://de.linkedin.com/in/bernhardthalmayr

This e-mail may contain confidential and/or privileged information.If
you are not the intended recipient (or have received this email in
error) please notify the sender immediately and delete this e-mail. Any
unauthorized copying, disclosure or distribution of the material in this
e-mail is strictly forbidden.
_______________________________________________
Visit the OpenAM forum at https://forgerock.org/forum/fr-projects/openam/
OpenAM mailing list
[hidden email]
https://lists.forgerock.org/mailman/listinfo/openam
Loading...