RajnathY.41743 (Customer) asked a question.
Single Logout Response not working ,getting Invalid signature in okta system log
I am using CRM portal as SP and using Okta as IDP. I can succesfully login. And when I tried to logout getting
<saml2p:StatusCode Value=“urn:oasis:names:tc:SAML:2.0:status:AuthnFailed”/> </saml2p:Status>
In saml2p:LogoutResponse response. Please suggest what is the error due to that at IDP side signout is not working.
Apr 24 23:28:47
Rajnath Yadav (User)
User single sign out from app
failure : Invalid Signature
Community Tip (AppInstance)
Rajnath Yadav (AppUser)
- ActorAlternateId rajnath1987@gmail.com
- DisplayName Rajnath Yadav
- ID 00u48c2uh13LmsawV4x6
Hi Rajnath,
There could be many reason to fail SLO. Have you uploaded correct cert on Okta SLO config? also verify algorithm used to sign request. Can you also try this tool to validate the request - use the XML dump of your LogoutRequest.
https://www.samltool.com/validate_logout_req.php
for detail troubleshooting please create case with Okta.