I am setting up a service provider to connect to ADFS, and looking for the error we get says:
The Federation Service encountered an error while processing a SAML authentication request.
Microsoft.IdentityModel.Protocols.XmlSignature.SignatureVerificationFailedException: MSIS0037: No signature verification certificate found for issuer 'myapp.domain.com'.
at Microsoft.IdentityServer.Protocols.Saml.Contract.SamlContractUtility.CreateSamlMessage(MSISSamlBindingMessage message)
at Microsoft.IdentityServer.Service.SamlProtocol.SamlProtocolService.Issue(IssueRequest issueRequest)
at Microsoft.IdentityServer.Service.SamlProtocol.SamlProtocolService.ProcessRequest(Message requestMessage)
I am just a client / SP, I do not have access to the ADFS server, which is managed by another company, in another country. So, like John Snow, I don't know anything.
The Internet seems to suggest that perhaps these two Microsoft KBs may be relevant:
- KB2843638 (security update that is causing the problem)
- KB2896713 (subsequent patch)
Is the metadata that the IDP does not trust, or will it be another problem?
source
share