Encryption isn't working with the exchanged certificate.
Issue on IDP:
ERROR: The SAML authentication request issued by https://proxy.security.service.xxxxxxxxx.net:4443/saml/XXX_P2_SAML_Auth was not signed.
o.f.o.s.UtilProxySAMLAuthenticator: 2023-04-18T10:55:12.019+02:00: Thread[https-jsse-nio-8443-exec-42]: TransactionId[c8fc8060-c97f-4e8c-9812-9b4ebc1a516d-26110]
How can this be set up, for ProxySG to sign the requests?
Release : 7.3.13.2
Configure the "signing" option for SAML, to have ProxySG sign the SAML request.
Solution:
1. ProxySG#(config) security saml edit-realm *Auth-Realm*
2. ProxySG#(config saml *Auth-Realm*) signing sign-requests enable
3. ProxySG#(config saml *Auth-Realm*) signing keyring *key-ring*