Reputation: 11
An error occured. Reason:0004-Certificate found in Signature or KeyDescriptor under element "EntityDescriptor" is not trusted
An error occured. Reason:0004-Certificate found in Signature or KeyDescriptor under element "EntityDescriptor" is not trusted.
I am using Spring security SAML for implementing SSO and testing it against SSOCircle. but whenever I am uploading generated metadata. I am getting the above error.
When I am removing the certificates from the SP metadata it is working fine. But How should I work with the certificates or make those certificates trusted for SSO circle to work with.
The certificates I am working with are issues by trusted CA.
Upvotes: 1
Views: 1232
Answers (1)
Reputation: 457
Is your SP metadata signed? If yes, please remove the signature element in the metadata. Please note: You do not need to remove the signing certificates from the metadata. The signing certificate is still used to verify the signature of the requests.
Upvotes: 1
Related Questions
- MSIS0037: No signature verification certificate found for issuer
- How to have a SAML request/response signed using Spring Security SAML extension
- How to turn off all SSL checks on Postman for a specific site?
- Spring Security on Wildfly: error while executing the filter chain
- Use of IDP Certificate
- What do I need to do to get Internet Explorer 8 to accept a self signed certificate?
- Spring SAML Sample: SSOCircle SHA256 not supported
- Error occured while updating the IDProvider
- Spring Security SAML trusted certificate entries are not password-protected