Customized Java Function to Verify SAML signature by passing SAML response and certification
Hi Team,
Required support to Verify the SAML signature by passing SAML response.
Note: Third party (opposite team) is not ready to share the IDP parameters, hence we are not able to use SAML2 Authentication provided by Pega.
We have created new service in pega and asked opposite team to call the same by passing encoded SAML in request parameters. From pega end we are able to receive the SAML in request and able to decode and parse it. We are tried to write some customize java function to verify the signature by passing decoded SAMLresponse and the cerificate data but we are facing issue or might be issue with our java code(we are not a experience java resource). We need support here by sharing java fuction from which we can verify the SAML signature.
Thanks,
Sunil
Accepted Solution
Updated: 9 Feb 2024 6:29 EST
Pegasystems Inc.
GB
@SunilH15 To verify the SAML signature, Pega uses its built-in capabilities and does not require custom Java code. The SAML authentication service in Pega automatically validates the SAML assertion signature as part of the SAML SSO process. If you're facing issues with this, it might be due to a misconfiguration in your SAML authentication service or an issue with the certificate. Please ensure that your SAML authentication service is correctly configured and that the certificate used for signature verification is correctly imported into Pega.
⚠ This is a GenAI-powered tool. All generated answers require validation against the provided references.
PEGA SSO implementation with SAML 2.0
Unable to process the SAML WebSSO request : Unable to process SAML2 Authe
SAML Assertion signature verification failed : SAML token security failure
Ask the Expert - SAML Authentication with Lakshmi Billa and Anupam Dubey
@SunilH15 To verify the SAML signature, Pega uses its built-in capabilities and does not require custom Java code. The SAML authentication service in Pega automatically validates the SAML assertion signature as part of the SAML SSO process. If you're facing issues with this, it might be due to a misconfiguration in your SAML authentication service or an issue with the certificate. Please ensure that your SAML authentication service is correctly configured and that the certificate used for signature verification is correctly imported into Pega.
⚠ This is a GenAI-powered tool. All generated answers require validation against the provided references.
PEGA SSO implementation with SAML 2.0
Unable to process the SAML WebSSO request : Unable to process SAML2 Authe
SAML Assertion signature verification failed : SAML token security failure
Ask the Expert - SAML Authentication with Lakshmi Billa and Anupam Dubey
SAML WebSSO SHA1 issue with ADFS
@jastg are you able to comment on this question?