How to generate a SignatureValue for a SAML XML

Posted on 2014-08-08
Medium Priority
Last Modified: 2014-10-10
I should begin by saying that I am not a developer and have very little programming skills. With that being said I have a request to generate a 'SignatureValue' for a SAML XML. I have the x.509 certificate which was purchased from a third party. Research shows that the SignatureValue is the actual value of the digital signature used to sign the x.509 certificate.

But how do I pull that value/information from the x.509certificate?
Question by:dowhatyoudo22
  • 2
LVL 29

Accepted Solution

becraig earned 1500 total points
ID: 40249027
You simply need to export the certificate public key into base 64 format and open in notepad and copy the key blob.

You can then insert the public portion of your keypair into your xml.

Author Comment

ID: 40249326
When you mention the key blob I assume you are referring to the block of characters between the Begin and End Certificate statements?

There is another section in the SAML XML (ds:X509Certificate). This field is to be field with the certificate used to sign the SAML. I have exported the x509 format of the SSL key I am using from my third party vendor and put it in this field.

Exporting the public key into base 64 format and copying the key blob into the signaturevalue field would be putting the same information into two separate places, would it not? If I'm understanding you correctly I will be putting the same key blob information into the signaturevalue and the x509certificate fields?
LVL 29

Expert Comment

ID: 40249447
This may be the signing of the token that you have done:

The signature will be a certificate the you have the private key for, which will be defined in your assertion.

what element is did you embed the x509 tag in ?

This is not extremely complicated but will require a lot of reading to better understand Idp and sso using SAML2.0

Some suggested reading:

Featured Post

[Webinar] Cloud and Mobile-First Strategy

Maybe you’ve fully adopted the cloud since the beginning. Or maybe you started with on-prem resources but are pursuing a “cloud and mobile first” strategy. Getting to that end state has its challenges. Discover how to build out a 100% cloud and mobile IT strategy in this webinar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

CTAs encourage people to do something specific to show interest in your company, product or service. Keep reading to learn why CTAs should always be thought of as extremely important, albeit small, sections of websites.
Ready to get certified? Check out some courses that help you prepare for third-party exams.
The viewer will learn how to dynamically set the form action using jQuery.
The viewer will learn how to look for a specific file type in a local or remote server directory using PHP.
Suggested Courses
Course of the Month16 days, 7 hours left to enroll

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question