You can modify and add more information about the relying party and metadate for FIDO2 devices. Support is available for the uploading of metadata documents. Configuration of metadata services is available as a requestable feature.
Procedure
-
Update metadata document information.
-
Select .
-
Select the tab for the item that you want to modify.
- Relying Parties
- Device Metadata
-
For the item you want to change, expand the overflow icon
and select Edit.
-
Modify the relying party and metadata information.
Note: You cannot change the relying party identifier. It is the only information that you cannot change.
-
Click Save.
-
Update metadata services information.
Note: Metadata service is a requestable feature, VDEV-52233. It is not enabled by default. To request this feature, contact your IBM Sales representative or IBM contact and indicate your interest in enabling this capability. This public preview might not be available in your location. If you have permission to create a support ticket, create a support ticket with the feature number. Note: IBM Verify trial subscriptions cannot create support tickets.
After you create the service, you can only enable or disable it. You can not modify it. If you need to make changes to the URL or the certificate, you must delete the service and recreate it.
-
Select .
-
Select the tab for the item that you want to modify Select the Metadata tab.
-
Under Metadata services, click Create metadata.
-
Enter the URL of the metadata service.
-
Select the signer certificate of the service in the drop-down menu.
This certificate is used to validate the signature of the retrieved metadata service blob.
Note: If no certificates are listed in the drop-down menu or the listed certificates are not relevant to the metadata service feature, more certificates can be uploaded to the service. See
Certificates.
-
Click Save.