ERROR: The SAML authentication request issued by *PROXY* was not signed.
search cancel

ERROR: The SAML authentication request issued by *PROXY* was not signed.

book

Article ID: 264493

calendar_today

Updated On:

Products

ISG Proxy

Issue/Introduction

Encryption isn't working with the exchanged certificate.

Issue on IDP:

ERROR: The SAML authentication request issued by https://proxy.security.service.xxxxxxxxx.net:4443/saml/XXX_P2_SAML_Auth was not signed.

o.f.o.s.UtilProxySAMLAuthenticator: 2023-04-18T10:55:12.019+02:00: Thread[https-jsse-nio-8443-exec-42]: TransactionId[c8fc8060-c97f-4e8c-9812-9b4ebc1a516d-26110]

How can this be set up, for ProxySG to sign the requests?

 

Environment

Release : 7.3.13.2

Resolution

Configure the "signing" option for SAML, to have ProxySG sign the SAML request. 

Solution:
1. ProxySG#(config) security saml edit-realm *Auth-Realm*
2. ProxySG#(config saml *Auth-Realm*) signing sign-requests enable
3. ProxySG#(config saml *Auth-Realm*) signing keyring *key-ring*