---
title: Signing XML files
description: Use the Pingfederate administrative console to sign XML files.
component: pingfederate
version: 13.0
page_id: pingfederate:administrators_reference_guide:pf_signing_xml_files
canonical_url: https://docs.pingidentity.com/pingfederate/13.0/administrators_reference_guide/pf_signing_xml_files.html
revdate: July 10, 2024
section_ids:
  steps: Steps
---

# Signing XML files

Use the Pingfederate administrative console to sign XML files.

## Steps

1. Go to **System > Protocol Metadata > \[.wintitle]** **File Signing**\*\*.

2. On the **Select Metadata File** tab, choose your metadata file.

3. On the **Digital Signature Settings** tab, select a signing certificate from the list.

   If you have not yet created or imported your certificate into PingFederate, click **Manage Certificates** and use the **Certificate Management** configuration wizard to complete the task.

   1. Clear the related checkboxes to exclude the public key information and the raw key from the signed XML file.

   2. Select a signing algorithm from the list.

   The default selection is **RSA SHA256** or **ECDSA SHA256**, depending on the key algorithm of the chosen signing certificate. Make a different selection if you and your connection partner have agreed to use a stronger algorithm. For a list of the available signing algorithms and their URIs, see [Signing algorithms](pf_signing_algorithms.html).

4. On the **Export & Summary** tab, click **Export** to save the digitally signed file.

5. Click **Done**.