You need to sign in to do that
Don't have an account?
nick zhang
how to sign a saml response
Hi,
I have the requirement to sso into salesforce community from our business application. As we have no Identity Provider, I'm working on generating a saml response by myself and send it to salesforce. I am confused what should I use to make a signature in the xml. Do I need to use our own private key or something else? I have read some articles on saml signature, seems that I should use our private key to sign the response and share our public key with salesforce. But I did not find a page in salesforce to store our public key. I only find the page under setup/Single Sign-On Settings, where I can upload a certificate. Dose this certificate mean our own CA-signed certificate?
Thanks.
I have the requirement to sso into salesforce community from our business application. As we have no Identity Provider, I'm working on generating a saml response by myself and send it to salesforce. I am confused what should I use to make a signature in the xml. Do I need to use our own private key or something else? I have read some articles on saml signature, seems that I should use our private key to sign the response and share our public key with salesforce. But I did not find a page in salesforce to store our public key. I only find the page under setup/Single Sign-On Settings, where I can upload a certificate. Dose this certificate mean our own CA-signed certificate?
Thanks.
Salesforce itself can be used as an Identity Provider - https://help.salesforce.com/apex/HTViewHelpDoc?id=identity_provider_enable.htm&language=en.
I'd focus on trying to do this along an officially supported (by Salesforce) channel rather than trying to hack together your own "fake IdP".