SAML HTTPS connection with kennisnet staging environment

0
votes

I took sample webapp from https://github.com/vdenotaris/spring-boot-security-saml-sample and it is working file. Later. I tried to connect kennisnet staging environment.

Kennisnet details here

https://developers.wiki.kennisnet.nl/index.php?title=KNF:Hoofdpagina/en

I updated metadata which is downloadable from this url https://hub-s.entree.kennisnet.nl/openaselect/profiles/saml2/

I generated smalKeyStore.jks using below commands

  1. keytool -genkey -alias tomcat -keyalg RSA -keystore samlKeyStore.jks
  2. keytool -importkeystore -srckeystore samlKeyStore.jks -destkeystore samlKeyStore.jks -deststoretype pkcs12

I followed all Spring SAML https threads in stackoverflow and not able to figure it out this issue.

LOGS: enter image description here

1
spring-saml

1 Answers

0
votes

Add the certificate to your JDK so that your application can get the metadata from URL https://aselect-s.entree.kennisnet.nl/openaselect/profiles/saml2.

These are the steps you need to fillow:

  1. Download the certificate for aselect-s.entree.kennisnet.nl

  2. Import the certificate to your JDK/JRE using this command:

    keytool -keystore #path to java_home#/lib/security/cacerts -importcert -alias #anything relevent# -file #path to certificate#

Make sure your server is using same java_home where you are importing the certificate, also verify the subjectname in the certificate before importing, it must be "CN = *.entree.kennisnet.nl"

  1. Restart the server.