Question

2
Replies
221
Views
PARTHIPAN Member since 2012 3 posts
HCL
Posted: August 15, 2019
Last activity: August 15, 2019
Closed

Signing certificate & Decryption certificate for MFA AuthService - SAML 2.0 (PRPC 8.2.1)

We have implemented MFA & SSO using AuthService of SAML 2.0 type which works well when checkbox "Disable request signing" is selected (i.e works with out certificate).

I tried with cert but getting the error "Unable to process the SAML WebSSO request : Unable to build SAML2 Logout Response Redirect URL : Key does not exist, Keystore Entry is not either PrivateKeyEntry or SecretKeyEntry".

The key store types are supports in Pega 8.2.1 are JKS, JWK, PKCS12, KEYTAB, KEY.

We are looking for following clarifications

# 1 - Would like to know if it (MFA AuthService - SAML 2.0) works for any of you with certificate. If so, please let us know the Key Store type used by you such as JKS or KEYTAB.

# 2 - Is above specified key store file must need to have private key of certificate inside

# 3 - Have you certificate type of CSR or Non CSR

FYI - SSL offload happnes for us at GTM / LTM level

Thanks in advance for support.

***Edited by Moderator Marissa to update platform capability tags****

Low-Code App Development
Moderation Team has archived post
Share this page LinkedIn