topic Re: SAML signature validation issue in SAS Viya 4 in Administration and Deployment https://communities.sas.com/t5/Administration-and-Deployment/SAML-signature-validation-issue-in-SAS-Viya-4/m-p/941540#M28902 This typically indicates an issue in your idpMetadata field in sas.logon.saml.providers. The SAML assertion being sent to authenticate the user is being signed by a different certificate/key than what is in the idpMetadata, so SAS Logon Manager cannot validate the signature. Wed, 28 Aug 2024 18:33:18 GMT gwootton 2024-08-28T18:33:18Z SAML signature validation issue in SAS Viya 4 https://communities.sas.com/t5/Administration-and-Deployment/SAML-signature-validation-issue-in-SAS-Viya-4/m-p/941037#M28890 <P>Hi,<BR /><BR />Im configuring SAML in SAS Viya 4 ,i have followed&nbsp;<BR /><A href="https://documentation.sas.com/doc/en/sasadmincdc/v_055/calauthmdl/n1iyx40th7exrqn1ej8t12gfhm88.htm#n17fub6pu6ue9cn1ada0mg418bab" target="_blank" rel="noopener">https://documentation.sas.com/doc/en/sasadmincdc/v_055/calauthmdl/n1iyx40th7exrqn1ej8t12gfhm88.htm#n17fub6pu6ue9cn1ada0mg418bab</A><BR />and communities link&nbsp;<BR /><A href="https://communities.sas.com/t5/SAS-Communities-Library/SAS-Viya-2021-2-SAML-with-Multi-Tenancy/ta-p/793267" target="_blank" rel="noopener">https://communities.sas.com/t5/SAS-Communities-Library/SAS-Viya-2021-2-SAML-with-Multi-Tenancy/ta-p/793267</A><BR />generated certificates using&nbsp; following commands</P><PRE class=""><CODE>mkdir -p ~/SAML_Certs openssl req -new -newkey rsa:4096 -days 3650 -nodes -x509 \ -subj "/ST=SelfSigned/CN=SASLogonSigningKey" \ -keyout ~/SAML_Certs/SASLogonSigning.key \ -out ~/SAML_Certs/SASLogonSigning.cert openssl rsa -in ~/SAML_Certs/SASLogonSigning.key -out ~/SAML_Certs/SASLogonSigningRSA.ke</CODE></PRE><P>but getting <STRONG>validation protocol message signature failed</STRONG> error while logging with user .</P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="ravikumar901_0-1724761683799.png" style="width: 400px;"><img src="https://communities.sas.com/t5/image/serverpage/image-id/99647iFD840C5DD22389E5/image-size/medium?v=v2&amp;px=400" role="button" title="ravikumar901_0-1724761683799.png" alt="ravikumar901_0-1724761683799.png" /></span></P><P>&nbsp;</P><P>Please help me out to resolve this.</P> Tue, 27 Aug 2024 12:28:55 GMT https://communities.sas.com/t5/Administration-and-Deployment/SAML-signature-validation-issue-in-SAS-Viya-4/m-p/941037#M28890 ravikumar901 2024-08-27T12:28:55Z Re: SAML signature validation issue in SAS Viya 4 https://communities.sas.com/t5/Administration-and-Deployment/SAML-signature-validation-issue-in-SAS-Viya-4/m-p/941540#M28902 This typically indicates an issue in your idpMetadata field in sas.logon.saml.providers. The SAML assertion being sent to authenticate the user is being signed by a different certificate/key than what is in the idpMetadata, so SAS Logon Manager cannot validate the signature. Wed, 28 Aug 2024 18:33:18 GMT https://communities.sas.com/t5/Administration-and-Deployment/SAML-signature-validation-issue-in-SAS-Viya-4/m-p/941540#M28902 gwootton 2024-08-28T18:33:18Z