SAML assertion was not signed properly with any of the certificates provided in the IdP metadata
When trying to authenticate with SAML, Error 400 Bad request is displayed in the browser. When looking into the Qlik Sense Proxy (Trace/Audit_proxy) the following WARN message: SAML assertion was not signed properly with any of the certificates provided in the IdP metadata
Looking at the SAML response and at the IDP metadata, we can, however, see that the same certificate is used for signing.
Qlik Sense Enterprise 3.0 to versions prior to February 2020
This has been resolved in the February 2020 release.
Caused by QLIK-89285.
Due to a known issue in the third party library used to implement SAML in Qlik Sense (ComponentSpace v18.104.22.168), Qlik Sense will not be able to validate a SAML response if it does not contain the following: