[Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

AD FS (Error - Single Sign-On)

Posted on 2014-01-16
3
Medium Priority
?
893 Views
Last Modified: 2014-02-11
Dear all,

We are running AD FS on a windows 2012 server (SAML 2).
We have set up a Relying party trust, and receive the following error:

Our company name has been changed below to TEST

Error - Single Sign-On
(reference# NGOJCAEF) For security reasons a Response sent via the front channel that contains encrypted Assertion(s) must have a valid signature (but was NOT_PRESENT).
Partner: http://adfs.TEST.net/adfs/services/trust
Target Resource: https://TEST.<relyingparty>.com/biit/

Any help greatly appreciated.
0
Comment
Question by:Simon336697
3 Comments
 
LVL 38

Accepted Solution

by:
Mahesh earned 1000 total points
ID: 39791272
Any ADFS events error logs would help please

Also have you checked relying party certificate is valid ?

Mahesh
0
 
LVL 20

Assisted Solution

by:compdigit44
compdigit44 earned 1000 total points
ID: 39792888
Did you check your XML document to make sure it is valid and in the correct format?

http://stackoverflow.com/questions/10759381/what-is-the-correct-format-for-saml-2-0-assertions
0
 
LVL 1

Author Comment

by:Simon336697
ID: 39851538
Sorry guys gor ghe late response. I will allocate points and revisit this at a later time.
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
Here's a look at newsworthy articles and community happenings during the last month.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…
Suggested Courses

865 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question