Clarification on Single Sign-On Implementation and Certificate Managementhttps://community.appian.com/discussions/f/administration/35370/clarification-on-single-sign-on-implementation-and-certificate-managementRequirement: Implement Single Sign-On (SSO) for your application. Updated the Service Provider Signing Certificate in Appian. Generated a metadata file and sent it to clients. Configured the file and received an &quot;Identity Provider Metadata&quot;en-USTelligent Community 12RE: Clarification on Single Sign-On Implementation and Certificate Managementhttps://community.appian.com/thread/137710?ContentTypeID=1Mon, 08 Jul 2024 06:22:23 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:0f5aa612-e65e-4657-ba2d-2541ce627de8shashankr0001<p>Hi Yogi,<br /><br /></p> <p>Thanks for your response.</p> <p>We have identified the issue. The client was using verification certificates in Azure AAD, which we were unaware of. This caused user verification failures upon login. After uploading the certificates in the Appian certificates tab, we can now authenticate users successfully.</p><div style="clear:both;"></div>RE: Clarification on Single Sign-On Implementation and Certificate Managementhttps://community.appian.com/thread/137513?ContentTypeID=1Wed, 03 Jul 2024 07:08:50 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:7e4984b8-815d-412e-884a-4dc4687c4b51varaprasadt0001<div class="flex flex-grow flex-col max-w-full"> <div dir="auto" data-message-author-role="assistant" data-message-id="d41d653f-997b-4455-8241-baa552d34695"> <div> <div class="markdown prose w-full break-words dark:prose-invert light"> <p>In my SAML response, I see <code><a href="http://schemas.microsoft.com/ws/2008/06/identity/authenticationmethod/x509">schemas.microsoft.com/.../x509</a></code>. This indicates that the IdP used an X.509 certificate for authentication. Do I need to add any additional certificates on my side besides the SAML configuration?</p> </div> </div> </div> </div> <div class="mt-1 flex gap-3 empty:hidden juice:-ml-3"> <div class="items-center justify-start rounded-xl p-1 flex"> <div class="flex items-center"><span class="" data-state="closed"><span></span></span><span class="" data-state="closed"><span></span></span><span class="" data-state="closed"><span></span></span> <div class="flex"><span class="" data-state="closed"><span></span></span></div> <div class="flex items-center pb-0.5 juice:pb-0"> <div></div> <span class="line-clamp-1 text-sm">4o</span></div> </div> </div> </div><div style="clear:both;"></div>RE: Clarification on Single Sign-On Implementation and Certificate Managementhttps://community.appian.com/thread/137496?ContentTypeID=1Tue, 02 Jul 2024 14:47:54 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:bcb8913b-24e5-4410-a673-d727e56956d2Yogi Patel<p><span>Maybe your IdP is configured to not validate SAML request signatures. Check your IdP configuration.</span></p> <p><span><img style="max-height:240px;max-width:320px;" alt=" " src="/resized-image/__size/640x480/__key/communityserver-discussions-components-files/12/samlsignaturevalidation3.png" /><br /></span></p><div style="clear:both;"></div>