SAML error for SSO with ADFS - MSIS0038: SAML Message has wrong signature

Question

Hi I am trying to use SSO to authenticate my client\'s users directly to my website. My client\'s IDP is Microsoft ADFS and I am using Passport-SAML (https://github.com/berg

Answer 1

I'm not familiar with Microsoft ADFS nor Passport-SAML, but I when we had signature errors was because the SHA1 fingerpring of the IDp certificate didn't match the one at our end.

We fixed them by making sure the certificate is correctly formatted and then calculating the fingerpring.

Format: https://developers.onelogin.com/saml/online-tools/x509-certs/format-x509-certificate Fingerprint: https://developers.onelogin.com/saml/online-tools/x509-certs/calculate-fingerprint

Hopefully this is your case