Hi,
How can I validated the assertion signature using IdP thumbprint rather than .cer file?
Thanks,
Muhammad Masood
I don’t think you can.
By thumbprint, do you mean the certificate’s thumbprint?
If so, this is simple a hash of the certificate which is used to identify the certificate.
You need the IdP’s certificate to verify the assertion signature.