OpenAM: During SAML 2.0 request, X.509 certificate don't have to be within validity date. An expired x.509 certificate can work without any issues. It is recommended to have this certificate within a validity date but SAML request won't fail if it is expired.
In Oracle OAM there is a property that can force certificate validity but OpenAM currently don't have this
option.
No comments:
Post a Comment