Exception during establishing federation


This topic has 1 reply, 2 voices, and was last updated 2 months, 2 weeks ago by Jatinder Singh.

  • Author
  • #28264

    I am trying to establish Federation between ForgeRock(IDP) and IDCS(SP) for SSO requirements.
    While importing the IDCS metadata in forgerock I am getting the following error.

    Certificate found in Signature or KeyDescriptor under element “EntityDescriptor” is not trusted.

    Where should I add the certificate for trust to happen.Please suggest.

    We are using ForgeRock Version 6.


     Jatinder Singh

    AM requires a trust store containing CA certificates (internal/external) to establish trust relationship. If you have not created or configured one, it’s going to use the default i.e. cacerts. Try adding your ROOT CA or self-signed certificate to this trust store and trying again.

    Location of cacerts: $JAVA_HOME/lib/security/cacerts

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.

©2020 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?