Can anyone assist how to resolve this error, we are using self signed certs from idP and default certs in Splunk. Configurations on both end looks fine and no errors on idP end
splunkd errors:
-0400 ERROR UiSAML - Verification of SAML assertion using the IDP's certificate provided failed. Error: Failed to verify signature with cert
-0400 ERROR Saml - Unable to verify Saml document
ERROR Saml - Error: Failed to verify signature with cert :/home/splunk/etc/auth/idpCerts/idpCert.pem;
Error on the UI: This after entering credentials in the Single Sign on URL
Verification of SAML assertion using the IDP's certificate provided failed. Error: Failed to verify signature with cert
Sometimes this error is shown because the order of the certificate in the chain is not how Splunk needs it. Ensure you have the root, any intermediaries and then the leaf certificate configured (pasted in to the config) in that order.
Hello @arrangineni,
you need configure splunk to trust the self signed certificate, follow the second part of this troubleshooting manual: https://docs.splunk.com/Documentation/Splunk/8.0.3/Security/TroubleshootSAMLSSO
Additionally check this answer: https://answers.splunk.com/answers/543221/problem-with-saml-cert-error-uisaml-verification-o.html