Security

Azure AD SAML not working : Why is verification of SAML assertion using the IDP's certificate provided failing?

ayush1906
Path Finder

Hi All,

have generated Azure AD SAML XML and certificate using Splunk Blog:

 https://www.splunk.com/en_us/blog/tips-and-tricks/configuring-microsoft-s-azure-security-assertion-m... 

 

After loading up XML in a totally new instance, it gives the below error:

 Verification of SAML assertion using the IDP's certificate provided failed. Error: failed to verify signature with certVerification of SAML assertion using the IDP's certificate provided failed. Error: failed to verify signature with cert

 

 In Azure portal can see the certificate is active:

 

Capture.JPG

 

not sure where to look further..... any leads here......


@tkomatsubara_sp @richgalloway @tshah-splunk 

Labels (4)
0 Karma
1 Solution

ayush1906
Path Finder

our team had created a portal, which interacted with Azure Portal, looks like some payload mismatch was causing certificate issue.

 

On configuring directly in Azure Portal, it worked as expected. 🙂

View solution in original post

0 Karma

pravinpawar
Observer

Hi All,

I'm currently facing the same issue. Any idea what was wrong with payload?

When I upload DEV Azure AD tenant metadata SSO is working as expected.

But it's not working for STAGE and PROD tenant and showing below error:

Verification of SAML assertion using the IDP's certificate provided failed. Error: failed to verify signature with cert

0 Karma

ayush1906
Path Finder

our team had created a portal, which interacted with Azure Portal, looks like some payload mismatch was causing certificate issue.

 

On configuring directly in Azure Portal, it worked as expected. 🙂

0 Karma
Get Updates on the Splunk Community!

AppDynamics Summer Webinars

This summer, our mighty AppDynamics team is cooking up some delicious content on YouTube Live to satiate your ...

SOCin’ it to you at Splunk University

Splunk University is expanding its instructor-led learning portfolio with dedicated Security tracks at .conf25 ...

Credit Card Data Protection & PCI Compliance with Splunk Edge Processor

Organizations handling credit card transactions know that PCI DSS compliance is both critical and complex. The ...