...
The IdP uses credentials to perform various cryptographic functions (message signing, server/client authenticated TLS connections, encryption, etc.). Credentials are defined in the $IDP_HOME/config/relying-party.xml file and are defined as follows.
If you want to regenerate an IdP's credential, see IdPCertRenew.
Define the Credential
The IdP may have any number of credentials. All credentials are defined after the MetadataProvider element in the relying-party.xml file.
...