We have SAML signature validation issue in production. Everything was working fine until this morning. We are getting the following error:
"Failed to validate the SAML assertion signature"
With some digging, we found out that some of the SSO requests were failing on
SAMLAssertionSignature.Verify()
The X509 certificate is sent as part of the message. They are exactly the same between the success and failure scenarios.
The exception we are getting is
ComponentSpace.SAML2.Exceptions.SAMLSignatureException: Failed to verify the XML signature. ---> System.Security.Cryptography.CryptographicException: Object was not found
The only thing happened between yesterday and today is installation of windows update.
Could this be related to that? Anyone had this issue before?
We got this issue resolved. Thanks to ComponentSpace for their quick response. bartonjs, your guess is right on all 3. Windows update for .Net 4.6.2 started the issue. We had to rollback the update. Even though ComponentSpace was quick with response and their suggestion, we could not try that out right away, as we had to wait for maintenance window. We tried the following last night and it worked
Everything is working fine now.
FYI: The updates that caused this issue are
Thank you for your assistance.