DFN-AAI Metadata from February 17th exclusively via TLS 1.2By: Wolfgang Pempe
From Monday, February 17th, the web server for downloading the federation metadata (www.aai.dfn.de) will only support TLS 1.2. Support for TLS 1.0 and 1.1 will be switched off. In case the metadata is retrieved via https, it should be ensured that the respective client applications/libraries (IdP, SP, etc.) used for the metadata download support at least TLS 1.2.
Please note that we recommend to download the federation metadata via http and not https. The trustworthy origin is ensured by validating the signature of the respective metadata file. Please refer to https://doku.tid.dfn.de/en:metadata and https://doku.tid.dfn.de/en:production for more information.
If you have any questions please contact the DFN-AAI Hotline (email@example.com)