Hi
We currently try to set up a SecurityToken Service. We installed the latest version of Geneva and used the latest FedUtil. Unfortunately we can't select "create new STS Service" in the fedtool, as this option is grey and not available.
Anyways we tried to use a FederationMetadata.xml and adapted the values in it.
When we tried to run the fedutil for our STS, we alsways get the Error:
I could track it down to the following section:
private static MetadataBase ReadSTSMetadata(string path)
{
if (string.IsNullOrEmpty(path))
{
throw new ArgumentException(Microsoft.IdentityModel.Tools.FedUtil.SR.GetString("ID1001", new object[0]));
}
ServicePointManager.ServerCertificateValidationCallback = new RemoteCertificateValidationCallback(UserInputParser.ServerSSLCertificateValidation);
XmlTextReader reader = new XmlTextReader(path);
MetadataBase base2 = new MetadataSerializer().ReadMetadata(reader);
reader.Close();
return base2;
}
(where path is
https://localhost/Pass2wkoService/FederationMetadata/2007-06/FederationMetadata.xml)
It fails, as soon as "MetadataBase base2 = new MetadataSerializer().ReadMetadata(reader);" is called, with the message:
ID6013: The signature verification failed.
I checked the https connection and also the certificate.
I don't know which signature it want's to verify?
Any ideas what we can check?
Thanks a lot,
Dominik
index > Claims based access platform (CBA), code-named Geneva > ID6013: The signature verification failed?