Export/Access id_token signing certificate

This topic contains 1 reply, has 1 voice, and was last updated by  Andrew 3 months ago.

  • Author
  • #25809

    Hi There, I have a 3rd party that I create a bearer token to authenticate to. They are asking for the X509 for the self-signed cert that created the signing key.

    I have used the /openam/oauth2/connect/jwk_uri and supplied that and also a PEM converted version which evidently isn’t enough.

    Is there and where can I get the public certificate that is associated with the public signing key that AM 6.5 uses by default to sign id_tokens?


    Looks like I fixed this myself.

    keytool -exportcert -storetype jceks -alias test -keypass changeit -keystore keystore.jceks -storepass “<.storpass>” -rfc -file keystore.pem

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.

©2019 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?