SAML error for SSO with ADFS - MSIS0038: SAML Message has wrong signature

Question

Hi I am trying to use SSO to authenticate my client\'s users directly to my website. My client\'s IDP is Microsoft ADFS and I am using Passport-SAML (https://github.com/berg

Answer 1

(following up from ADFS and PingFederate SSO : SAML Message has wrong signature)

We're using a different library and it was a different issue for us (our customer actually had the wrong signature), but during the process of trying to debug, I happened upon this thread that sounds very similar to what you're describing.

The fix is to install this hotfix. Can you check if your customer is on Windows Server 2008 and 2012, has 2843638 or 2843639 installed, and if so, install the hotfix if they haven't already? Just a shot in the dark...