SAP Knowledge Base Article - Preview

2260027 - The digital signature of the received SAML2 message is invalid


The authentication using the Security Assertion Markup Language (SAML) 2.0 fails prompting the user to enter the user and password. The following warning message is recorded in the traces:


Service Provider has received SAML2Response from Identity Provider [XXXXXXXXX] that contains an error status code [urn:oasis:names:tc:SAML:2.0:status:Requester]. Status message: [The digital signature of the received SAML2 message is invalid.]





SAML 2.0 Service Provider

  • NetWeaver AS Java
  • NetWeaver AS ABAP

SAML 2.0 Identity Provider

  • Part of NetWeaver Single Sign-On product
  • IDMFEDERATION SCA have to be installed on top of NetWeaver AS Java
  • Due to historical reasons IDMFEDERATION SCA is also part of SAP Identity Management


SAP NetWeaver 7.3 ; SAP NetWeaver 7.4 ; SAP NetWeaver 7.5 ; SAP NetWeaver Application Server for Java 7.2 ; SAP enhancement package 1 for SAP NetWeaver 7.3


saml login module authentication stack JavaEE AS Java SAML2.0 Troubleshooting troubleshooting wizard errors trace log debug IDP SP Idp certificate
, KBA , BC-JAS-SEC-AUT , ACLs, J2EE Roles, UME Actions , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.