Hello, I am trying to test Single Logout (SLO) for SAML, I can see my SAML request in the logs but I am getting "Issuer does not match" error. When, I try to upload a certificate (in PEM or DER format) I get a failure message "The filename is invalid or missing" I can see that the file is not missing (and attached) about the file names, I tried multiple names nothing works. I could not find any documentation on what format the certificate should be and the expected file name. Funny thing is I was able to upload a certificate earlier ! Any help would be greatly appreciated.
Thanks for responding Evan ! I was using PEM format. After a lot of wasted time turns out the issue was my browser, to be specific Opera (50.0.2762.67 MacOSX). Using Safari worked. Okta admin page did not give any indication indication there was a failure with Opera. Anyways, I was finally able to upload the certs and successfully test SAML Single Logout.
Hi Sandeep, I stuck in the SAML logout part. Basically, we have configured required things in the OKTA regarding logout. We have uploaded same certificate which OKTA has given. But, after logout from the OKTA, we are not getting logout from the application. Can you help us regarding the same?
Hi all, I got the same issue with uploading Signature Certificate. Can anyone tell me what is the "Signature Certificate" in single logout and what is its purpose? As I think, "Signature Certificate" is the public key of Service Provider which have uploaded on Single Sign-On configuration. in other think, it's the public key of CA which we use to generate the public key?