The Shibboleth IdP V4 software has reached its End of Life and is no longer supported. This documentation is available for historical purposes only. See the IDP5 wiki space for current documentation on the supported version.
StartTLSAuthenticationCredential
Namespace: urn:mace:shibboleth:2.0:resolver
Schema: http://shibboleth.net/schema/idp/shibboleth-attribute-resolver.xsd
This element has been DEPRECATED and should be avoided.
The replacements are the authCert
and authKey
attributes.
Overview
The <StartTLSAuthenticationCredential>
 element specifies X.509 client authentication credentials to use when connecting to a directory over LDAPS or StartTLS.
The xsi:type
of the credential is usually defined in the urn:mace:shibboleth:2.0:security
namespace, the schema for which is located at http://shibboleth.net/schema/idp/shibboleth-security.xsd
This namespace must be declared in the file (it was not collapsed into the urn:mace:shibboleth:2.0:resolver
namespace due to the fact that it has use in the MetadataConfiguration in rare cases).
Reference
The XML Attributes and Elements supported will vary based on the specific credential type.
Credential Types
Credential types are distinguished by their xsi:type
. Some of the typical types used with this element are:
sec:X509ResourceBacked
sec:X509Inline
See the Credentials topic for details on configuring credentials of various types.