I’m using the SAML 2.0 Components to initiate an SSO call to ADFS as an identity provider. When ADFS 2.0 is used, it works correctly. However, I get an attribute signing error when ADFS 3.0 is used as the identity provider. Using the VerifySAML utility on the Unencrypted Assertion XML (from ADFS 3.0), it does not verify.
Are there any changes needed in the SAML components to work with ADFS 3.0? How about ADFS configuration?
We support ADFS 2.0 and ADFS 3.0 and there shouldn’t be any configuration differences.
PS. The customer contacted us by email and the issue turned out to be a configuration issue in ADFS with the default token signing certificate.