Good afternoon. We have a client trying to do an IDP Initiated Assertion to our CS Service that we have implemented with many other clients successfully. However, this client is using NetIQ and 2 certs, 1 for Signing and 1 for Encryption. Anytime we enable the Response Sign and Encryption to True it fails with the below: "The SAML response isn't signed."
Any thoughts? Is it possible within CS to allow 2 different certs as noted above?
|