a) for server server to browser certificate SSL, public certificate .crt format
Bag Attributes
localKeyID: 3A 2D C4 AC FF 77 06 A9 F7 21 89 93 3C 51 6B 40 E8 3C CB C3
subject=C = US, ST = California, L = Sunnyvale, O = Fortinet, OU = MIS, CN = demo.fortinet.com, emailAddress = bradyliu@fortinet.com
issuer=C = US, ST = California, L = Sunnyvale, O = Fortinet, OU = Certificate Authority, CN = fortinet-subca2001, emailAddress = support@fortinet.com
-----BEGIN CERTIFICATE-----
xxxxxxxxxxxxxxxxxxxx
-----END CERTIFICATE-----
b) for server server to browser certificate SSL, private .key format
Bag Attributes
localKeyID: 3A 2D C4 AC FF 77 06 A9 F7 21 89 93 3C 51 6B 40 E8 3C CB C3
Key Attributes: <No Attributes>
-----BEGIN PRIVATE KEY-----
xxxxx
-----END PRIVATE KEY-----
c) for server serve to server SSL, public certificate .pem format
-----BEGIN CERTIFICATE-----
xxxxxxxxxxxxxxxxxxxx
-----END CERTIFICATE-----
d) for server serve to server SSL, private key .pem format
-----BEGIN PRIVATE KEY----
XXXXX
-----END PRIVATE KEY-----
e) for SAML encryption public key x509 format
XXXXX
f) for SAML encryption private key x509 format
XXXXXXXXXXXXX
** fullchian.pem should be just the public key in .crt file, provided by fserver, privkey.pem should be just private key .key file provided by server, fullchain.crt provided is not used
they should also be the same in settings.json in saml***********
No comments:
Post a Comment