SAP Knowledge Base Article - Public

3160104 - SAML - Response time conditions not fulfilled (too soon) (EN)



After successful authentication against our SAML-Server, we receive the following error message in the Collaboration Hub:

Reason:  An error occurred (saml2.exception - SAML: Response time conditions not fulfilled (too soon).)


The problem is that there is a minimal time difference between our Collaboration Hub server and your SAML Response Server. Therefore the validation of the “NotBefore” time is failing and our server denies the access.
In the ADFS the time for each relying party can be changed a little bit. Therefore, could you please execute the following statement on the PowerShell of your ADFS.
Set-ADFSRelyingPartyTrust -TargetIdentifier "<relying party identifier>" -NotBeforeSkew 1

Please replace <relying party identifier> with the correct entityID*. Please find further information as well under
In case your using an alternative system than ADFS please check your manual for a similar statement.

*: Please choose the appropriate infrastructure for the entityID:

  • EMEA-system:
  • US-system:
  • APAC-system:

INLINECustomer Support


German version:


KBA , BPI-SIG-CA-SEC-SAM , SAML 2.0 for SAP Signavio , How To


SAP Signavio Process Manager all versions ; Signavio Process Manager all versions