Generating Certificates

If you want to create a self-signing certificate (not signed and validated by a trusted third party), you can do that. SimpleSAMLphp will use the certificates to sign and encrypt the messages, so it is a good idea to generate your own so you're not using the default ones.

Windows

If you are using windows, please follow this guide mentioned here : http://stackoverflow.com/questions/496658/using-makecert-for-development-ssl

Linux/Unix/OSX

Here are two resources you can read to generate certificates using the terminal in a *nix operating system.

• http://www.ipsec-howto.org/x595.html
• http://www.akadia.com/services/ssh_test_certificate.html