We are running AD FS on a windows 2012 server (SAML 2).
We have set up a Relying party trust, and receive the following error:
Our company name has been changed below to TEST
Error - Single Sign-On
(reference# NGOJCAEF) For security reasons a Response sent via the front channel that contains encrypted Assertion(s) must have a valid signature (but was NOT_PRESENT).
Target Resource: https://TEST
Any help greatly appreciated.