SAML unknown error from provider: "The SAML response is not valid. Response do not contain signature."

Problem statement

We are experiencing failed SAML login attempts with the error message:

“Exception”: "SGT5.Common.Utilities.Exceptions.MyException: The SAML response is not valid. Response do not contain signature, at SGT5.Web.Saml.SamlResponse.Validate().

The SAML Response also contains the following:

 <samlp:Status>
        <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Responder"/>
        <samlp:StatusMessage Value="Unknown error from provider"/>
    </samlp:Status>

Solution

By changing the ACS URL on the IdP side to [https://{](https://%7B/)auth0_domain}/login/callback, you should be able to log in successfully.