3037666 - SAML2.0: Error "Signature verification of metadata was not successful"

Symptom

Error message "Signature verification of metadata was not successful" is raised when adding a "New Trusted Identity Provider".
In the "Metadata Verification" step, a message appears stating, "Metadata is signed with the following certificate: <IdP's certificate>. Specify local copy of the signing certificate to ensure trust."

Image /data in this KBA is from SAP internal systems, sample data, or demo systems. Any resemblance to real data is purely coincidental.

Environment

SAP NetWeaver Application Server
ABAP Platform
SAP S/4HANA

Product

ABAP platform all versions ; SAP NetWeaver 2004 ; SAP NetWeaver 7.0 ; SAP NetWeaver 7.1 ; SAP NetWeaver 7.2 ; SAP NetWeaver 7.3 ; SAP NetWeaver 7.4 ; SAP NetWeaver 7.5 ; SAP S/4HANA all versions ; SAP enhancement package 1 for SAP NetWeaver 7.0 ; SAP enhancement package 1 for SAP NetWeaver 7.3 ; SAP enhancement package 2 for SAP NetWeaver 7.0 ; SAP enhancement package 3 for SAP NetWeaver 7.0

Keywords

CA, certificate, STRUST, X509, X.509, not success, SAML2.0, Trusted Providers, identity provider, metadata, SAML2, xml, upload, signing certificate, decrypt , KBA , BC-SEC-LGN-SML , SAML 2.0 for ABAP , How To

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.