Automatic Signature Detection SHA1 & SHA2


We have customers that are using SHA2 and SHA1. Does the SAML signature verification detect which digest/signature method is being sent and use the appropriate method to verify? Currently we would have to configure both ends to use the same method. This is be problematic for us as we have a lot of customers that we have to change to migrate to SHA2. Is there a way that we check the msg and do this automatically?

The XML signature verification automatically detects the digest and signature methods being used and handles these appropriately. There’s nothing you need to do other than ensure SHA-2 support is enabled on the system. If you’re using a recent version of our product the SHA-2 support is enabled automatically. If you’re seeing a error please provide the details.