I am working in a IdP-initiated project. I should implement the SSO using SAML. I only have to work on the IdP part. I dont have to touch the SP (thats what they told me).
The client for whom I am working, sent me the IdP certificate and the IdP Metadata. And I have some questions...
1. Should they also sent me the SP certificate and the SP Metadata? I mean, I think there has to be some kind of relationship between the IdP Metadata and the SP Metadata since their share some info, right? (and same for the certificates).
2. The client sent me the certificate. It's a .cer, but I think I need a .pfx. I was trying to export the .cer as .pfx using the MMC Certificates Snap-In, but the .PFX option it is not allowed (I am attaching a screenshot). Why..?
Could someone help me with this questions?
Thanks in advance,