Auth0 as IdP: Is it possible to sign both the response and assertion?

mmarion · October 19, 2023, 5:27pm

I’ve read the documentation: Sign and Encrypt SAML Requests

And it seems that Auth0 only supports signing the response, or the assertion, not both. Is that the case? Is there a workaround to that? It seems like Auth0 acknowledges that having both signed is a valid requirement, since using Auth0 as an SP allows for exactly that configuration, but I can’t find documentation on how to configure that scenario when Auth0 is the IdP and the SP has the requirement that both are signed. Every similar request in the “community” help center is either unanswered, unhelpful, or very old. The parent company, Okta, supports this functionality, as do all other major IDaaS solutions, so I find it surprising that it doesn’t seem possible. Am I missing something?

dan.woda · October 26, 2023, 3:59pm

Hi @mmarion,

Welcome to the Auth0 Community!

It doesn’t look like this is currently possible. Feel free to submit a feature request in our Feedback category. Thanks!

system · November 9, 2023, 3:59pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Need capability to sign both SAML Response and Assertion at the same time Feedback	1	3	October 31, 2024
SAML Error: "SAML Response not signed" Knowledge Articles	1	623	January 26, 2024
Overview of Signing and Encryption Features for a SAML Service Provider Knowledge Articles	1	645	February 1, 2024
SAML Assertion signature is invalid Help saml , saml2	4	7956	August 31, 2021
Auth0 as SAML 2.0 IdP with signing asserts Help signin , saml2 , idp	2	5293	June 14, 2019

Auth0 as IdP: Is it possible to sign both the response and assertion?

Related Topics