The “Sign SSO & SLO Requests” toggle enables the use of the plugin certificate to sign the SAML SSO and SLO requests before sending them to the Identity Provider (IDP), as an additional security measure.
Note: You can use the plugin certificates when your Identity Provider mandates signed SAML requests.
-
- To enable the option to send signed SSO requests, you can follow the steps below:
-
- In the plugin settings, navigate to the Service Provider Setup tab.
- Enable the toggle to send signed SSO requests.
- Click on the Save button to save these configurations.
-
The plugin certificate is also used to decrypt the encrypted SAML Responses or assertions received from the Identity Provider.
If you are still facing any issues then you can contact us at samlsupport@xecurify.com