Re: IDP Sending Users to Unsecure HTTP Connection

Robo Burned robo at
Tue Dec 22 03:21:22 EST 2015

The url where IdP will redirect user is specified in   AssertionConsumerServiceURL  attribute of  samlp:AuthnRequest that SP sends to IdP. So you should check how the request is being generated on SP side. Also you have to add corresponding AssertionConsumerService element  with the same Location attribute to SP metadata.
>Понедельник, 21 декабря 2015, 18:29 UTC от "David E. Newswanger" <David_Newswanger at>:
>I recently installed a new service provider. When people go to login via HTTPS, the identity provider authenticates them and then redirects them using HTTP to the home page and they get a security warning saying "The information you have entered on this
 page will be sent over an insecure connection and could be read by a third party." How do I configure my SP or IdP to redirect authenticated users using HTTPS?

Robo Burned
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the users mailing list