...
The security and privacy of your SAML deployment depends on the security of the private keys used for message-level signing and encryption, as well as the keys used to create secure back channels for transporting SAML messages over TLS. See The corresponding public keys are bound to X.509 Certificates in Metadata, as discussed in the Key Usage topic. See the TLS Server Certificates topic for more informationregarding keys and certificates used for browser-facing TLS.
| Warningtip | ||
|---|---|---|
| ||
Read the IdP Key Handling topic (or the SP Key Handling topic) before generating a new private key. |
...