My third-party SAML SP product does not support encrypted assertions. For example ComponentSpace, Weblogic Server 11g.
How can I disable encryption of assertions?
By default, the assertions created by Ubisecure SSO are encrypted. To disable assertion encryption, modify the third-party SP metadata before import to Ubisecure SSO. Consider security risks carefully before making these changes.
- Edit the SP metadata. Add use="signing" to the XML element KeyDescriptor. e.g. <md:KeyDescriptor use="signing">
- Activate the SP again using the Ubisecure SSO Management application