SAML Single Sign-OnSAML Single Sign-On
Try For Free

Request signing and response encryption

Certificates

The certificate used for signing and encryption is generated automatically during the plugin-installation. It can be replaced or regenerated in the Service Provider-tab.

This certificate is included in the SAML-metadata so that it is available to the Identity Provider after importing metadata. This inclusion can be controlled with the settings. 

Include Signing Certificate in Metadata and Include Encryption Certificate in Metadata in the Service Provider-tab.

Signing

SAML Single Sign On can sign outgoing SAML-requests and handle encrypted SAML-responses.

The option to sign requests is set per IdP-configuration with the parameter Sign Authentication Requests and is enabled by default.

Encryption

SAML Single Sign On can decrypt encrypted SAML-responses or assertions. This requires no further configuration on the Plugin as long as the certificate is known to the IdP e.g. by including it in the metadata (see above) or importing it manually.



This site uses cookies to deliver its service & to analyse traffic. By browsing this site, you accept the privacy policy.

Our Wiki uses cookies

We want to give you the best possible experience on our website. For this we use technically required cookies and, if you agree, cookies for analysis and marketing purposes. You can find more information about the cookies in our Privacy Policy. By tapping ‘Accept All,’ you consent to the use of these methods by us and third parties.

Necessary
Always Active
Analytics
Advertisement
Other