Create Signing Certificate

A certificate must be used by the PortalGuardIdP to sign outgoing SAML assertions. A self-signed certificate can be created quickly using openssl.exe which is included in the PortalGuard Trial zip file in the PortalGuard\_Optional” folder.The ” will be replaced with the folder name/path that the PG install kit was extracted to.

1. Open a DOS prompt and change directory to the PortalGuard\_Optional”folder, then run the following command and follow the prompts that appear:

opensslreq -x509 -days 3650 -newkey rsa:2048 -keyoutPGIdP.pem -out PGIdP.pem -config ./openssl.cnf

Remember the password as it will be entered in the IdP_Config.exe as well.