Identity Manager Community

Forum OIM App Server Session token certificate

OIM App Server Session token certificate

elichak_23973 over 5 years ago

How to change the session token certificate on application server? Is it possible&

0 Markus Weiss-Ehlers over 5 years ago

Could you share the version of OneIM you are using?

The answer in general is yes, but the how-to donut depends on it.
Cancel
Up 0 Down

Reply

Verify Answer

Cancel
0 elichak_23973 over 5 years ago in reply to Markus Weiss-Ehlers

version 8.0.1
Cancel
Up 0 Down

Reply

Verify Answer

Cancel
0 elichak_23973 over 5 years ago in reply to Markus Weiss-Ehlers

and one more question: need to use company CA certificate or self-signed certificate that was generated in one of app srv? What information should be write in field Subject?
Cancel
Up 0 Down

Reply

Verify Answer

Cancel
0 Markus Weiss-Ehlers over 5 years ago in reply to elichak_23973

You just need to change the thumbprint for the session certificate in the web.config of the application server.

<connectionbehaviour>

<add key="tokencertificatethumbprint" value="F18...." />
</connectionbehaviour>

There is no limitation on the subject but you should follow your company policies for certificates in general. Keep in mind that this certificate is not used for encryption but for signing the sessions. The traffic via HTTPS is encrypted using the Web Server certificate from your IIS.
Cancel
Up 0 Down

Reply

Verify Answer

Cancel