使用SSL证书的私钥签署SAML断言时,证书的Issuer字符串的格式是什么?
Dim ResponseIssuer As XmlElement
ResponseIssuer = doc.CreateElement("Issuer", "urn:oasis:names:tc:SAML:2.0:assertion")
Dim issuerFormat As XmlAttribute
issuerFormat = doc.CreateAttribute("Format")
issuerFormat.Value = "urn:oasis:names:tc:SAML:2.0:nameid-format:entity"
ResponseIssuer.Attributes.Append(issuerFormat)
ResponseIssuer.InnerText = IssuerString ' <= here
<snip>
当我在MMC Certificates管理单元中检查Issuer时,这是窗口文本区域中的显示:
CN = DigiCert SHA2 Secure Server CA
O = DigiCert Inc
C = US
复制和粘贴该字符串(包括回车)似乎不起作用。只需要一小部分吗?
答案 0 :(得分:2)
ResponseIssuer不是签名证书的颁发者,而是SAML响应消息的颁发者。这是发送响应的实体的实体ID