Help

saml ad fs sha256

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
scott_lee
Member II
‎10 Jul 2017 11:53 PM

saml ad fs sha256

Jump to solution

Hello, I'm trying to configure Alfresco with AD FS SAML 2.0.  In our organization, one of the requirements is that the signed AuthnRequest is with a SHA256 signature.  Is there a way to have Alfresco support this?  It appears that it's defaulting to SHA1.

Reply
1 Solution

Accepted Solutions
arebegea
Member II
‎17 Jul 2017 3:09 PM

Re: saml ad fs sha256

Jump to solution

It is a bug. The request sent by Alfresco to the IdP is using the SHA-1 default algorithm.  We will also fix the documentation here: Configuring AD FS with SAML SSO | Alfresco Documentation :

Click the Advanced tab, and select SHA-1 in Secure hash algorithm. Click OK.

View solution in original post

0 Kudos
Reply
3 Replies
janv
Alfresco Employee
‎12 Jul 2017 0:54 PM

Re: saml ad fs sha256

Jump to solution

Hi Scott,

Can I assume you are using the Enterprise SAML module ?

If so, please also contact Alfresco Support so that they can help raise & track this issue.

Regards,

Jan

0 Kudos
Reply
resplin
Intermediate
‎12 Jul 2017 11:46 PM

Re: saml ad fs sha256

Jump to solution

In addition to Jan's good advice, I want to confirm that it should be using SHA-256. We will investigate if this is a bug in the product, and if it is we will fix it in a service pack. A support case will help us to track our efforts.

0 Kudos
Reply
arebegea
Member II
‎17 Jul 2017 3:09 PM

Re: saml ad fs sha256

Jump to solution

It is a bug. The request sent by Alfresco to the IdP is using the SHA-1 default algorithm.  We will also fix the documentation here: Configuring AD FS with SAML SSO | Alfresco Documentation :

Click the Advanced tab, and select SHA-1 in Secure hash algorithm. Click OK.

0 Kudos
Reply
Alfresco Content Services Forum

Ask for and offer help to other Alfresco Content Services Users and members of the Alfresco team.

Related links:

We use cookies on this site to enhance your user experience

By using this site, you are agreeing to allow us to collect and use cookies as outlined in Alfresco’s Cookie Statement and Terms of Use (and you have a legitimate interest in Alfresco and our products, authorizing us to contact you in such methods).   If you are not ok with these terms, please do not use this website.