I’ve created an enterprise SAML connection in Auth0, using Okta as the IDP. Authentication works fine. Now I want to set up request signing.
Sign Request in Auth0. I can see
SigAlg being sent along with the
In Okta, I uploaded my tenant’s signing cert (obtained from
But when signature validation is enabled, login transactions immediately fail with
Unknown configuration or configuration not supported.
If I disable signature validation on Okta’s side, login works again. So obviously Okta doesn’t like something about my signed SAMLRequest.
I verified the signature using Validate SAML AuthN Request Online Tool | SAMLTool.com and it’s correct.
Has anyone successfully configured this?