Signature trust establishment failed for metadata entry

[Mak, Steve]

is there a security issue by removing that SP own/embeded signature (provider by the partner) , as long as I resign it on my side with my "federation-agregrate" ?

It could mean the file was modified after the signature was generated, which is why the validation is failing. Or the person providing the file doesn’t completely understand xml signatures.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20200629/443b1bc0/attachment.htm>