/
Disable assertion encryption
Disable assertion encryption
- Former user (Deleted)
- Keith Uber
- Former user (Deleted)
Owned by Former user (Deleted)
Last updated: 2023-03-22 by Keith Uber
Many third-party SAML SP products do not support encrypted assertions. For example ComponentSpace, Weblogic Server 11g.
How can I disable encryption of assertions?
Step-by-step guide
By default, the assertions created by Ubisecure SSO are encrypted. To disable assertion encryption, modify the third-party SP metadata before import to Ubisecure SSO. Consider security risks carefully before making these changes.
- Edit the SP metadata. Add use="signing" to the XML element KeyDescriptor. e.g. <md:KeyDescriptor use="signing">
- Activate the SP again using the Ubisecure SSO Management application
Related articles
, multiple selections available,
Related content
"Access to the requested resource is denied" with Suomi.fi authentication (SSO 8.9.x)
"Access to the requested resource is denied" with Suomi.fi authentication (SSO 8.9.x)
Read with this
SAML SP for Java release notes - SSO
SAML SP for Java release notes - SSO
More like this
Configure Suomi.fi authentication
Configure Suomi.fi authentication
Read with this
SAML authentication: NullPointerException at JCEMapper.getJCEKeyAlgorithmFromURI
SAML authentication: NullPointerException at JCEMapper.getJCEKeyAlgorithmFromURI
More like this
SAML Compatibility Flags
SAML Compatibility Flags
Read with this
SQL Server Integration: Issue during SSO startup in SSO 9.x and above
SQL Server Integration: Issue during SSO startup in SSO 9.x and above
More like this