The Shibboleth IdP V3 software has reached its End of Life and is no longer supported. This documentation is available for historical purposes only. See the IDP4 wiki space for current documentation on the supported version.
StartTLSAuthenticationCredential
The <StartTLSAuthenticationCredential> element specifies X.509 client authentication credentials to use when connecting to a directory over LDAPS or startTLS.
Schema Name and Location
This element is defined by the urn:mace:shibboleth:2.0:resolver schema, which is located at http://shibboleth.net/schema/idp/shibboleth-attribute-resolver.xsd.
The xsi:type of the credential is usually defined by the urn:mace:shibboleth:2.0:security schema, which is located at http://shibboleth.net/schema/idp/shibboleth-security.xsd.
This namespace must be provided (its has not been collapsed into the urn:mace:shibboleth:2.0:resolver schema
Attributes
Attributes may only be provided if required by the specific credential type.
Child Elements
Child elements may only be provided if required by the specific credential type.
Credential Types
Credential types are distinguished by their xsi:type. Some of the typical types used with this element are:
sec:X509Filesystemsec:X509ResourceBacked
sec:X509Inline
See the Credentials topic for details on configuring credentials of various types.