If token encryption is activate in azure active directory then how we can decrypt SAML response at client side ?
We are able to decrypt SAML response if token encryption is deactivate but not able to decrypt while it activate.
If token encryption is activate in azure active directory then how we can decrypt SAML response at client side ?
We are able to decrypt SAML response if token encryption is deactivate but not able to decrypt while it activate.
When enabling token encryption in the Azure AD portal, you would have to provide the public key of the cert. On the application side, you have to use the private key of the same certificate to decrypt it.
4 people are following this question.