-
Type:
Suggestion
-
Resolution: Unresolved
-
Component/s: IdP SSO - Initial Setup
-
27
Problem Summary:
Although the official SAML standards do not require it, many IdPs require a signed AuthNRequest for security reasons.
Thereby, authentication requests to IdPs that require the signature will fail with this error:
ERROR [http-nio-8017-exec-11] [onelogin.saml2.authn.SamlResponse] isValid The status code of the Response was not Success, was urn:oasis:names:tc:SAML:2.0:status:Requester -> Signature required
Customers cannot integrate such IDPs with Atlassian Cloud as the request always fails unless they tweak the IDP logic to not check for signed SAML requests.
Solution:
Optionally provided an SP SAML certificate to the IDPs that need the SAML requests to be signed
- is duplicated by
-
- Closed
- is related to
-
- Gathering Interest
- is addressed by
-
ENT-828 Loading...
- is resolved by
-
- mentioned in
-
-
-
-
-
-
-
-
-
-
-