ADFS - 元数据不包含将实体配置为声明提供程序信任所需的签名密钥 [英] ADFS - The metadata does not contain the signing key needed for the entity to be configured as a claims provider trust

问题描述

我们的客户向我们提供了联邦metadata.xml文件。当我们去导入并创建声明提供者信任时，我们收到以下错误消息：

Our customer has provided us with federated metadata.xml file. When we go to import and create the claims provider trust we receive this error message:

我已经进行了大量的Google搜索，以便能够告诉客户缺少什么。您是否可以提供有关ADFS在客户xml文件中期望的内容的解释？

I have performed considerable Google search to be able to tell the customer what is missing. Can you provide explanation as to what ADFS is expecting in the customer xml file that it is not getting?

谢谢，

保罗

保罗

推荐答案

是否有这样的部分？

Is there a section like this?

< KeyDescriptor use =" sign">

     ;< KeyInfo xmlns =" http://www.w3.org/2000/09/xmldsig ＃ ">    < X509Data>

     < X509Certificate> ...< ; / X509Certificate>

    < / X509Data>

   < / KeyInfo>

<KeyDescriptor use="signing">
   <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
    <X509Data>
     <X509Certificate>...</X509Certificate>
    </X509Data>
   </KeyInfo>

这篇关于ADFS - 元数据不包含将实体配置为声明提供程序信任所需的签名密钥的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！