Hello
I am configuring OAM 11.1.2.3 to be an identity provider for ADFS for some internal applications / SSO but am running into an error I was hoping someone might have come across. I can get this working where ADFS is the IdP, but not as an SP.
I have configured all the certificates in OAM (and this works with other SP intances), but when going to ADFS I am getting the error "Cannot find certificate to validate message/token signature obtained from claims provider" in the ADFS logs. Looking at the SAML data, I am not seeing the signing certificate included in the SAML payload which I think might be part of the problem. Has anyone got this working / know what could be causing this? Or, do you know of a partner profile parameter to include the signing cert / public key in the SAML assertion / profile? Any help you can give would be appreciated.
Thanks
Nick