IdP v4 SLO issues when wilcard certificates for websites

Lipscomb, Gary glipscomb at
Tue Aug 18 00:24:40 UTC 2020

Logged IDP-1656


-----Original Message-----
From: users <users-bounces at> On Behalf Of Cantor, Scott
Sent: Tuesday, 18 August 2020 09:22
To: Shib Users <users at>
Subject: Re: IdP v4 SLO issues when wilcard certificates for websites

On 8/17/20, 6:57 PM, "users on behalf of Lipscomb, Gary" <users-bounces at on behalf of glipscomb at> wrote:

>    Is there anything that I can provide to assist in troubleshooting this case?

I don't think there's anything to troubleshoot unless my theory here is wrong. I would file a bug with a complete log trace on DEBUG (everything, messages, all of it) attached along with the SP's metadata. I will most likely just resolve it as working as expected.

>    Shibboleth SP 3.1.0

Anything that recent shouldn't have this problem unless its metadata is wrong. Unless it's been manipulated, it should be signing the LogoutResponse. I don't see any way to get this error unless the message isn't signed (or signed with the wrong or undocumented key).

-- Scott

For Consortium Member technical support, see
To unsubscribe from this list send an email to users-unsubscribe at

More information about the users mailing list