Shibboleth Developers

["Howard Gilbert" <>]

The X.509 Certificates in the CVS head and therefore the Tarball expired Saturday. This does not effect the IdP or SP, because as the documentation carefully notes Trust validates the certificates against the Metadata and ignores the expiration dates. However, the browser complains when, as in the default test setup, the certificate is also used as an SSL certificate by Tomcat. Just click OK on the popup box to continue to use the old certificate in test.