Export/Access id_token signing certificate

This topic has 1 reply, 1 voice, and was last updated 3 years, 2 months ago by Andrew.

  • Author
  • #25809

    Hi There, I have a 3rd party that I create a bearer token to authenticate to. They are asking for the X509 for the self-signed cert that created the signing key.

    I have used the /openam/oauth2/connect/jwk_uri and supplied that and also a PEM converted version which evidently isn’t enough.

    Is there and where can I get the public certificate that is associated with the public signing key that AM 6.5 uses by default to sign id_tokens?


    Looks like I fixed this myself.

    keytool -exportcert -storetype jceks -alias test -keypass changeit -keystore keystore.jceks -storepass “<.storpass>” -rfc -file keystore.pem

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?