Forum Discussion

Nimbostratus

Jun 06, 2013

SAML BIG-IP as SP SHA256 Cipher not accepted

This is the log when we try to hit the SP with sha256: SAML Agent: /Common/TXMAPSAML_act_saml_auth_ag SAML assertion is invalid, error: Unsupported signature alogorithm. rsa-sha1 supported ...

app sec

BIG-IP Access Policy Manager (APM)

security

Gavin_Connell-O

Nimbostratus

Oct 20, 2014

I could do with some guidance on this too! Trying to authenticate against an SP with SAML, and they want SHA-256 signed tokens. I'm sending SHA-1. Apparently 256 became possible in 11.4, and I'm using 11.4.1. Anyone got any clues? Do I need to change the certificate I'm using? Or is this configured somewhere in the APM SAML objects?

Thanks,

Gavin

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)