I know this isn't really the right forum, but I'm hoping to find an answer. We built our SAML implementation (service provider) to expect the response to be signed. We're working on getting a client who uses ADFS set up. The integration guide says "It’s recommended that SAML messages or assertions from the identity provider are signed.", but I can't find any documentation that says how to sign the response. I know this is an ADFS question, but if someone knows the answer I would greatly appreciate it.
|