By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

The Assertion of the Response is not encrypted and the SP require it

0

We are trying to configure as a Cloud application Centra Guardicore in AWS SSO and we are seeing the following error message:

The assertion of the Response is not encrypted and the SP require it

Does AWS SSO send over all the assertions encrypted or is there a way to configure this to be sent over encrypted?

Topics
Security, Identity, & Compliance
Tags
AWS IAM Identity Center
Language
English
cellsignal-sso-cdelcastillo
asked 2 years ago660 views
1 Answer
1
Accepted Answer

Unfortunately, the current AWS implementation of SAML 2.0 federation does not support encrypted SAML assertions. However, the traffic between the customer's systems and AWS is transmitted over an encrypted (TLS) channel. I was able to see an existing feature request to add support encrypted SAML assertions which I have +1'd on your behalf. While I am unable to comment on if/when this feature may get released, I request you to keep an eye on our What's New and Blog pages for any new feature announcements.

AWS
SUPPORT ENGINEER
Michael_H
answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content