Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
696
Views
0
Helpful
1
Replies

(ADFS) SP-Initiated Single Logout (SLO) / SHA256

Go to solution
atapiafl@cisco.com
Cisco Employee
Cisco Employee

‎12-14-2017 07:10 AM

Hi, is ISE going to support SHA256 to do SLO in the next releases?

Right now we have this info:

"For this to work we need to set the secure hash algorithm to SHA1 instead of the default SHA-256.

This is set in ISE relying party trust properties under advanced.

If you don’t set this you’ll get the following message in to the ADFS event log:

Event ID: 378

SAML request is not signed with expected signature algorithm. SAML request is signed with

signature algorithm http://www.w3.org/2001/04/xmldsig-more#rsa-sha256 . Expected signature

algorithm is http://www.w3.org/2000/09/xmldsig#rsa-sha1"

Thanks

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee

‎12-14-2017 07:25 AM

Please work with the ISE product managers on features. We don’t discuss futures in public forum

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee

‎12-14-2017 07:25 AM

Please work with the ISE product managers on features. We don’t discuss futures in public forum

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents