SAP Knowledge Base Article - Preview

2688968 - Signature validation of SAML2Assertion failed - SAP BTP Neo environment


Application can not be reached in Neo environment through an SAML Identity Provider.

  • An "HTTP Status 500 - An internal application error occurred" error is displayed on the screen after performing SSO, or the SSO process is in an infinite loop.
  • The application log contains the following error:
    #ERROR#Authentication failed. Reason: Signature validation of SAML2Assertion failed. Signature not valid!

  • The application log may contain following error instead:

    Caused by: SAML2Response signature verification failed.
    Caused by: Certificate is expired (Certificate NotAfter: <expired validity date>)
    Caused by: NotAfter: <expired validity date>



SAP BTP, Neo environment


SAP Business Technology Platform all versions


SAML, IDP, corporate IDP, HTTP Status 500, An internal application error occured, Authentication failed, Signature validation, SAML2Assertion failed, Caused by: Signature not valid!, CertificateExpiredException, SAML2Exception, Certificate is expired, NotAfter, CertificateExpiredException: NotAfter   , KBA , scp , sap cloud platform , BC-NEO-SEC-IAM , Authentication, Authorization(Cloud Platform Neo) , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.