OIF Is Signing Assertion With Expired Cert

(Doc ID 1335922.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Identity Federation - Version: and later   [Release: No Release Description and later ]
Information in this document applies to any platform.


The SSL certificate that you imported in OIF wallet is expired. However, OIF is still using that certificate to sign SAML assertion. Though you were expecting OIF not to sign the assertion and to throw some error message instead.

Is that an expected behavior? Or its a know issue and there is any workaround for this?


Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms