From 6ae4e6a42a17885cb011e950b47ecdcadf3e070f Mon Sep 17 00:00:00 2001
From: Ryan Rumbaugh <rrumbaugh@nebraska.edu>
Date: Thu, 1 Feb 2024 08:23:00 -0600
Subject: [PATCH] Updated Dynatrace metadata to support multiple signing
certificates
---
nefed.xml | 196 +++++++++++++++++++++++++++++++-----------------------
1 file changed, 114 insertions(+), 82 deletions(-)
diff --git a/nefed.xml b/nefed.xml
index 4a6f714..04c6f98 100644
--- a/nefed.xml
+++ b/nefed.xml
@@ -29742,88 +29742,120 @@ Gk3Mp05d1eUmuSx+la30QAXkFgNXDP3Cp3JSKyG5A6EWjhXTyuNZcI/ffo6tjNWg
<EmailAddress>security@nebraska.edu</EmailAddress>
</ContactPerson>
</EntityDescriptor>
- <EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"
- entityID="https://sso.dynatrace.com:443/saml2/login">
- <Extensions>
- <mdrpi:RegistrationInfo registrationAuthority="https://nebraska.edu/nefed" />
- <mdattr:EntityAttributes>
- <saml:Attribute Name="http://macedir.org/entity-category"
- NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
- <saml:AttributeValue>https://nebraska.edu/category/registered-by-nefed</saml:AttributeValue>
- </saml:Attribute>
- </mdattr:EntityAttributes>
- <mdui:UIInfo>
- <mdui:DisplayName xml:lang="en">Dynatrace</mdui:DisplayName>
- <mdui:Description xml:lang="en">Dynatrace</mdui:Description>
- <mdui:InformationURL xml:lang="en">https://www.dynatrace.com</mdui:InformationURL>
- <mdui:PrivacyStatementURL xml:lang="en">
- https://www.dynatrace.com/support/help/manage/data-privacy-and-security</mdui:PrivacyStatementURL>
- <mdui:Logo height="85" width="141" xml:lang="en">
- https://uofnebraska.sharepoint.com/:i:/s/at/app_dev/EWxWxSnMIWRLgS3t17m0GWABjZnrUjQl8BoRnpMkkwDR_w?e=GlmKES&download=1</mdui:Logo>
- </mdui:UIInfo>
- </Extensions>
- <SPSSODescriptor AuthnRequestsSigned="true" WantAssertionsSigned="true"
- protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
- <KeyDescriptor use="signing">
- <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
- <ds:X509Data>
- <ds:X509Certificate>MIIFhzCCA2+gAwIBAgIBATANBgkqhkiG9w0BAQsFADB2MQwwCgYDVQQLEwNTU08xFjAUBgNVBAoT
- DUR5bmF0cmFjZSBMTEMxEDAOBgNVBAcTB1dhbHRoYW0xFjAUBgNVBAgTDU1hc3NhY2h1c2V0dHMx
- CzAJBgNVBAYTAlVTMRcwFQYDVQQDEw5TU08gSURQIGFuZCBTUDAeFw0xOTAyMjUxNTEzMzBaFw0y
- NDAyMjkxNTEzMzBaMHYxDDAKBgNVBAsTA1NTTzEWMBQGA1UEChMNRHluYXRyYWNlIExMQzEQMA4G
- A1UEBxMHV2FsdGhhbTEWMBQGA1UECBMNTWFzc2FjaHVzZXR0czELMAkGA1UEBhMCVVMxFzAVBgNV
- BAMTDlNTTyBJRFAgYW5kIFNQMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyT6z+w/v
- VQGKISKOowI4EoLl/nu/UV3zn/mEVrlCeZVk7t4x++lrlK+2gYF//3fyuslG0GBd0CLfyvy2LRU+
- UWA3LJN3sKz2AmJAIHDBGZr9c9z7QS6xxH0DnmRvZ5DQNv+WQbUQX2HgEl6Yg9wViOXIzWYBZ2Aw
- h2+hNRFvveb9RacHPXW4RxdS5YETOubIbSYWiWPGKjx4sGw2UKkuCzafEXdcqOlb9nlzcb89ESyi
- PJkKyZObR0K6P1VCaadkLvrceXtXJZNXC4yrrzQBqlpnlEoh3Ojo4kbzFgceQpX0LWPYpQFYnz7a
- PZRl+dhItQ+400/9Sd6WbiyGRxUvWIFsRGR3ITvWeiKXlVMr2TMm9ZqAfqBrBsPZoIY+HIarSE+E
- kZM7L64ZEn7cQ69hdfpsWWN6DbAJ02bz3+mKdwRintpWarHLn3G8GQxYo5LuRLLiDgiObS5+paQM
- u7XbGrnAqIuRrEUOUcKod/keaFixFSMEPIBSKQTQHcHcit/VZoZGhLrkLAiHd69hvOwWzdKy07+D
- ACz+r3AsgaaCS+d+2u9CeRAX20FV1OJy7Aj2fgCL+hjW9zwHjcvZGasI6zGIeItzq0LX2V0xLYZK
- V+oerTd5m+hUTlQJtxPlOoFuUKbBxzSqEdcM3eXSSFoy8Zu1wmU3eQtA/3PiqFJClPECAwEAAaMg
- MB4wDAYDVR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCBaAwDQYJKoZIhvcNAQELBQADggIBAB856IQd
- sgZi8Y+q5AROSH6Yk0K+T2FfqhuGKeBvgRH7v/0FiY1NSc4LUFQEQ4D/Lvuj/0C2rFY75WKD39UW
- 5IJM2KG5njbvQNAdRkgERslthbKktJHF+4DUTQ+4JG5cf2LDo80of9NJPMztB/aHEOtaqevCgCKV
- fn00n1LP+mxlQ8OG0CG7tapEBQuTCfqzKYv0yEHM+UyFGTMb0xM222uQJLTvDTYd5b0S7653LUDg
- j0JLeqNEqPIudYeC526h2pCs1/E9VXOOvVcr6Hcticm3Y2OTz5mJ+AjYzfVDgPyi1cmMrrVqAb3d
- E54ub6gI0yzeqknh2keTs7M1vdsxNb4zSW44v8119VOlFc7a2ZO0SrOn38e6y9KBF4aGFs2e43NW
- 0agPcfjGO7Xq53joY3nO6zDGF35HZxNmDJkNm5LONlhInt/U2DBPhjKRY3NPpgydr/bCuyjI8kz7
- UJZHk5QgW5hh1RzHDtiNn6D/RwDaXjSjp5nEW4onyfHB0knmgUPmnp9/SnBlJupWUDCG1hqw4XsF
- JakF5Z8psx0ZlRQYSVhXac8iyRf9Ey1p49/RO6tfuXqAFcexMSkTmN+wsQzwvRnS2Gl7IHN1ZSSP
- WlJKLLSJ4E9Zpt5RD9fg91jnvUIDXAiZYYr/QO/lpfBZu8voS2oQGcyDRBAMnWof7Ls/</ds:X509Certificate>
- </ds:X509Data>
- </ds:KeyInfo>
- </KeyDescriptor>
- <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
- Location="https://sso.dynatrace.com:443/saml2/sp/logout" />
- <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
- Location="https://sso.dynatrace.com:443/saml2/sp/logout" />
- <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
- Location="https://sso.dynatrace.com:443/saml2/sp/consumer" index="0" />
- </SPSSODescriptor>
- <Organization>
- <OrganizationName xml:lang="en-US">Dynatrace</OrganizationName>
- <OrganizationDisplayName xml:lang="en-US">Dynatrace</OrganizationDisplayName>
- <OrganizationURL xml:lang="en-US">https://www.dynatrace.com</OrganizationURL>
- </Organization>
- <ContactPerson contactType="technical">
- <GivenName>Alan Nelson</GivenName>
- <EmailAddress>alan.nelson@nebraska.edu</EmailAddress>
- </ContactPerson>
- <ContactPerson contactType="administrative">
- <GivenName>Nick Barry</GivenName>
- <EmailAddress>nbarry@nebraska.edu</EmailAddress>
- </ContactPerson>
- <ContactPerson contactType="support">
- <GivenName>ITS Support</GivenName>
- <EmailAddress>support@nebraska.edu</EmailAddress>
- </ContactPerson>
- <ContactPerson contactType="other"
- remd:contactType="http://refeds.org/metadata/contactType/security">
- <GivenName>ITS Security</GivenName>
- <EmailAddress>security@nebraska.edu</EmailAddress>
- </ContactPerson>
+ <EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://sso.dynatrace.com:443/saml2/login">
+ <Extensions>
+ <mdrpi:RegistrationInfo registrationAuthority="https://nebraska.edu/nefed" />
+ <mdattr:EntityAttributes>
+ <saml:Attribute Name="http://macedir.org/entity-category"
+ NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+ <saml:AttributeValue>https://nebraska.edu/category/registered-by-nefed</saml:AttributeValue>
+ </saml:Attribute>
+ </mdattr:EntityAttributes>
+ <mdui:UIInfo>
+ <mdui:DisplayName xml:lang="en">Dynatrace</mdui:DisplayName>
+ <mdui:Description xml:lang="en">Dynatrace</mdui:Description>
+ <mdui:InformationURL xml:lang="en">https://www.dynatrace.com</mdui:InformationURL>
+ <mdui:PrivacyStatementURL xml:lang="en">
+ https://www.dynatrace.com/support/help/manage/data-privacy-and-security</mdui:PrivacyStatementURL>
+ <mdui:Logo height="85" width="141" xml:lang="en">
+ https://uofnebraska.sharepoint.com/:i:/s/at/app_dev/EWxWxSnMIWRLgS3t17m0GWABjZnrUjQl8BoRnpMkkwDR_w?e=GlmKES&download=1</mdui:Logo>
+ </mdui:UIInfo>
+ </Extensions>
+ <SPSSODescriptor AuthnRequestsSigned="true" WantAssertionsSigned="true"
+ protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+ <KeyDescriptor use="signing">
+ <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+ <ds:X509Data>
+ <ds:X509Certificate>MIIFhzCCA2+gAwIBAgIBATANBgkqhkiG9w0BAQsFADB2MQwwCgYDVQQLEwNTU08xFjAUBgNVBAoT
+ DUR5bmF0cmFjZSBMTEMxEDAOBgNVBAcTB1dhbHRoYW0xFjAUBgNVBAgTDU1hc3NhY2h1c2V0dHMx
+ CzAJBgNVBAYTAlVTMRcwFQYDVQQDEw5TU08gSURQIGFuZCBTUDAeFw0xOTAyMjUxNTEzMzBaFw0y
+ NDAyMjkxNTEzMzBaMHYxDDAKBgNVBAsTA1NTTzEWMBQGA1UEChMNRHluYXRyYWNlIExMQzEQMA4G
+ A1UEBxMHV2FsdGhhbTEWMBQGA1UECBMNTWFzc2FjaHVzZXR0czELMAkGA1UEBhMCVVMxFzAVBgNV
+ BAMTDlNTTyBJRFAgYW5kIFNQMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyT6z+w/v
+ VQGKISKOowI4EoLl/nu/UV3zn/mEVrlCeZVk7t4x++lrlK+2gYF//3fyuslG0GBd0CLfyvy2LRU+
+ UWA3LJN3sKz2AmJAIHDBGZr9c9z7QS6xxH0DnmRvZ5DQNv+WQbUQX2HgEl6Yg9wViOXIzWYBZ2Aw
+ h2+hNRFvveb9RacHPXW4RxdS5YETOubIbSYWiWPGKjx4sGw2UKkuCzafEXdcqOlb9nlzcb89ESyi
+ PJkKyZObR0K6P1VCaadkLvrceXtXJZNXC4yrrzQBqlpnlEoh3Ojo4kbzFgceQpX0LWPYpQFYnz7a
+ PZRl+dhItQ+400/9Sd6WbiyGRxUvWIFsRGR3ITvWeiKXlVMr2TMm9ZqAfqBrBsPZoIY+HIarSE+E
+ kZM7L64ZEn7cQ69hdfpsWWN6DbAJ02bz3+mKdwRintpWarHLn3G8GQxYo5LuRLLiDgiObS5+paQM
+ u7XbGrnAqIuRrEUOUcKod/keaFixFSMEPIBSKQTQHcHcit/VZoZGhLrkLAiHd69hvOwWzdKy07+D
+ ACz+r3AsgaaCS+d+2u9CeRAX20FV1OJy7Aj2fgCL+hjW9zwHjcvZGasI6zGIeItzq0LX2V0xLYZK
+ V+oerTd5m+hUTlQJtxPlOoFuUKbBxzSqEdcM3eXSSFoy8Zu1wmU3eQtA/3PiqFJClPECAwEAAaMg
+ MB4wDAYDVR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCBaAwDQYJKoZIhvcNAQELBQADggIBAB856IQd
+ sgZi8Y+q5AROSH6Yk0K+T2FfqhuGKeBvgRH7v/0FiY1NSc4LUFQEQ4D/Lvuj/0C2rFY75WKD39UW
+ 5IJM2KG5njbvQNAdRkgERslthbKktJHF+4DUTQ+4JG5cf2LDo80of9NJPMztB/aHEOtaqevCgCKV
+ fn00n1LP+mxlQ8OG0CG7tapEBQuTCfqzKYv0yEHM+UyFGTMb0xM222uQJLTvDTYd5b0S7653LUDg
+ j0JLeqNEqPIudYeC526h2pCs1/E9VXOOvVcr6Hcticm3Y2OTz5mJ+AjYzfVDgPyi1cmMrrVqAb3d
+ E54ub6gI0yzeqknh2keTs7M1vdsxNb4zSW44v8119VOlFc7a2ZO0SrOn38e6y9KBF4aGFs2e43NW
+ 0agPcfjGO7Xq53joY3nO6zDGF35HZxNmDJkNm5LONlhInt/U2DBPhjKRY3NPpgydr/bCuyjI8kz7
+ UJZHk5QgW5hh1RzHDtiNn6D/RwDaXjSjp5nEW4onyfHB0knmgUPmnp9/SnBlJupWUDCG1hqw4XsF
+ JakF5Z8psx0ZlRQYSVhXac8iyRf9Ey1p49/RO6tfuXqAFcexMSkTmN+wsQzwvRnS2Gl7IHN1ZSSP
+ WlJKLLSJ4E9Zpt5RD9fg91jnvUIDXAiZYYr/QO/lpfBZu8voS2oQGcyDRBAMnWof7Ls/</ds:X509Certificate>
+ </ds:X509Data>
+ <ds:KeyName>Dynatrace Certificate 2019</ds:KeyName>
+ </ds:KeyInfo>
+ </KeyDescriptor>
+ <KeyDescriptor use="signing">
+ <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+ <ds:X509Data>
+ <ds:X509Certificate>MIIFhzCCA2+gAwIBAgIBATANBgkqhkiG9w0BAQsFADB2MQwwCgYDVQQLEwNTU08xFjAUBgNVBAoT
+ DUR5bmF0cmFjZSBMTEMxEDAOBgNVBAcTB1dhbHRoYW0xFjAUBgNVBAgTDU1hc3NhY2h1c2V0dHMx
+ CzAJBgNVBAYTAlVTMRcwFQYDVQQDEw5TU08gSURQIGFuZCBTUDAeFw0yMzEwMTMwOTMyMzFaFw0y
+ ODEwMTYwOTMyMzFaMHYxDDAKBgNVBAsTA1NTTzEWMBQGA1UEChMNRHluYXRyYWNlIExMQzEQMA4G
+ A1UEBxMHV2FsdGhhbTEWMBQGA1UECBMNTWFzc2FjaHVzZXR0czELMAkGA1UEBhMCVVMxFzAVBgNV
+ BAMTDlNTTyBJRFAgYW5kIFNQMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAle7i0A7y
+ Vl+TmeXviTI3P4WYYuY+jOkwnijGaO1lpSaypG0mr+SaAWHswh4cpXwAXgZYcPdMh2fVsbqQoI/C
+ 7q1yi90rq+HmyfCDxMrip1meZAnb2UO2XYizJZVVAr5omNS/3ZruUQlgwMQ8j7tU7tPnFGlso5kE
+ O81GCQazIrp0qTNyuBOnmJ4xp7BXXgHUGLUPKF0G1bK3IKbVoKVH73xf1fuHURyvdro2g8X8T9zG
+ FfWs8beqTj/xPb936jFEXQBaDR+JIU0bGouWgX8U96+YvkfaRehKO420N4E7vcv+mBfIugZjLXto
+ Ou+r90PXhScC1P1gYZXhMej5scWAY4C93kQHYiuwZSyw9YOIfjRcNxZjqLV3KIh3YxXKgHg7csI8
+ VWHSdPcgUSFgwrtvBZ+WRYtZmtwNpDO4JPz/zl6P9kLpiWd51EeqNlNftdQNLnV6UqH9i6Pvo8BK
+ EoGU8NHYoH4zWqtpD9/gD1B8iwceS82rOkPQm8+MFysJW/XhdmMqYOkjR8m7Oy7cINBJIUaRW20A
+ itmEcu9wQfWOshweyW4/4Aj+nwT20K1ogFHshrh6JiMsrCQ5WKYiuzFc84H++UskmqziVRFjl3ye
+ U9QeDlRstqs1Jtw24J4dtlS73blOzIM0tiDBaCXpwKt84MawcAfsuJsMqWQoR+8fmqMCAwEAAaMg
+ MB4wDAYDVR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCBaAwDQYJKoZIhvcNAQELBQADggIBACPRpn5y
+ /bFd9ZdHfBw4Yb9o9Kip3eBee8nc9SkG3iaNnJi0D2KisMB6IkfMNJFFcntwEuB7Mp1wE1nrfZ2L
+ KiYOli+J1hxr+XHdsntaBwIrIcYwkp9FQu1RwXM5F+W/sHnKtlMf8NMhJMsQU+btDLzZOcLk9Xvl
+ NCDBGZ63pXYOyv+uPDyG7rZtAy4IhVBR3XoCDBKUc7ShIB3wlPzd6+fIZMOLWvm5PWlWN+MEoX5E
+ AGKVx052+QPz+jD+pu73wRb6iMg+sN/fx9LZWJxNGMx/VH3jxbgVuYU7RaDcyRCkXfq1sXKsahN8
+ x5GHS6pMJOgGuX3/KsPElFMt+22bgxQj8glz4bOxi4wFVlJSDWygE3HsoGOc/irLw5BtEsD4G+Ac
+ 923F5VmjEcklHza+mNRPQOL11WeT5No4LRnHbQ1WY/n0V2CgtFQaMtiISfr5Vlr2hxiuWdkBuCL8
+ bw8ak9C1QWU148JfPTakqxu7g8mcVtyIseSkAD81ckPnatBBdGTRosvC5ztiS15tGOf/5qG7z7h5
+ 8f5Vkn3hGsPJYgyGnOakxIYGoZL8FxaKqTjbtCAwgS/HtY0rZTRS0n9y/ZCLwFgCSLi+eXUQCTLp
+ YUDCPo7ljlF5mmuWuzTDXfUfdXX1fyoZxbUgGFOOFZHEmulg4+8IvfI1PrHEtWoHXU71</ds:X509Certificate>
+ </ds:X509Data>
+ <ds:KeyName>Dynatrace Certificate 2023</ds:KeyName>
+ </ds:KeyInfo>
+ </KeyDescriptor>
+ <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
+ Location="https://sso.dynatrace.com:443/saml2/sp/logout" />
+ <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
+ Location="https://sso.dynatrace.com:443/saml2/sp/logout" />
+ <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
+ Location="https://sso.dynatrace.com:443/saml2/sp/consumer" index="0" />
+ </SPSSODescriptor>
+ <Organization>
+ <OrganizationName xml:lang="en-US">Dynatrace</OrganizationName>
+ <OrganizationDisplayName xml:lang="en-US">Dynatrace</OrganizationDisplayName>
+ <OrganizationURL xml:lang="en-US">https://www.dynatrace.com</OrganizationURL>
+ </Organization>
+ <ContactPerson contactType="technical">
+ <GivenName>Alan Nelson</GivenName>
+ <EmailAddress>alan.nelson@nebraska.edu</EmailAddress>
+ </ContactPerson>
+ <ContactPerson contactType="administrative">
+ <GivenName>Nick Barry</GivenName>
+ <EmailAddress>nbarry@nebraska.edu</EmailAddress>
+ </ContactPerson>
+ <ContactPerson contactType="support">
+ <GivenName>ITS Support</GivenName>
+ <EmailAddress>support@nebraska.edu</EmailAddress>
+ </ContactPerson>
+ <ContactPerson contactType="other"
+ remd:contactType="http://refeds.org/metadata/contactType/security">
+ <GivenName>ITS Security</GivenName>
+ <EmailAddress>security@nebraska.edu</EmailAddress>
+ </ContactPerson>
</EntityDescriptor>
<EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://api.us.access.proofpoint.com/v1/nebraskalincoln/saml/metadata">
<Extensions>
--
GitLab