On 11/3/11 4:23 PM, "Mike Flynn" <shibbolethlynda at yahoo.com> wrote: >I asked the client to test after I made the sign="true" setting but he >says he is still not getting a signed authNRequest: Redirect binding signatures are not XML signatures, they're encoded in the URL. -- Scott