cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Announcements
Choose one of the topics below to view our ISE Resources to help you on your journey with ISE

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

139
Views
0
Helpful
1
Replies
Cisco Employee

(ADFS) SP-Initiated Single Logout (SLO) / SHA256

Hi, is ISE going to support SHA256 to do SLO in the next releases?

Right now we have this info:

"For this to work we need to set the secure hash algorithm to SHA1 instead of the default SHA-256.

This is set in ISE relying party trust properties under advanced.

If you don’t set this you’ll get the following message in to the ADFS event log:

Event ID: 378

SAML request is not signed with expected signature algorithm. SAML request is signed with

signature algorithm http://www.w3.org/2001/04/xmldsig-more#rsa-sha256 . Expected signature

algorithm is http://www.w3.org/2000/09/xmldsig#rsa-sha1"

Thanks

Everyone's tags (2)
1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: (ADFS) SP-Initiated Single Logout (SLO) / SHA256

Please work with the ISE product managers on features. We don’t discuss futures in public forum

View solution in original post

1 REPLY 1
Cisco Employee

Re: (ADFS) SP-Initiated Single Logout (SLO) / SHA256

Please work with the ISE product managers on features. We don’t discuss futures in public forum

View solution in original post