IAM David Bantz dabantz at
Mon Aug 30 19:25:02 UTC 2021

I prefer but not insisting on signed requests; their metadata provided
signing cert and the request was signed, but the IdP claimed it failed to
meet security requirements.


On 30Aug, 2021 at 11:19:05, Peter Schober <peter.schober at>

> * IAM David Bantz <dabantz at> [2021-08-30 20:57]:
> however, [the SP] abandoned attempts to use their internal SAML
> service because they were unable to provide a digitally signed
> request that my Shibboleth IdP would accept.
> Why would you insist on signed SAML authn requests?
> -peter
> --
> For Consortium Member technical support, see
> To unsubscribe from this list send an email to
> users-unsubscribe at
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the users mailing list