Skip to main content

This content has been archived and is no longer being updated. Links may not function; however, this content may be relevant to outdated versions of the product.

Support Article

Wrong Signature Algorithm attribute in Authentication Request

SA-52532

Summary



When generating an authentication request in pySAMLWebSSOAuthenticationActivity, the system generates an incorrect SignatureMethod Algorthm.

That is, <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> is not generated.
Instead, <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> is generated.

This occurs when using:
  • SAML based Single sign-on (SSO) for Smart Dispute Access using Web and Pega Web Mashup
  • Certificates with RSA - SHA256 encryption

Error Messages



Not Applicable


Steps to Reproduce



Log an SAML request in Pega in cloud or on Active Directory Federation Services (ADFS).


Root Cause



A defect in Pegasystems’ code or rules.

The signature algorithm was hard coded. The signature algorithm was fetched from the SP certificate.


Resolution



Apply HFix-41903.


 

Tags:

Pega Platform 7.2.2 Pega Platform Platform Data Integration

Published July 25, 2018 - Updated October 8, 2020

Was this useful?

0% found this useful

Have a question? Get answers now.

Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.

Visit the Collaboration Center

Did you find this content helpful?

Yes
No

Want to help us improve this content?
Suggest an edit

We'd prefer it if you saw us at our best.

Pega Community has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice
Contact us