question

Pavol-6727 avatar image
0 Votes"
Pavol-6727 asked sikumars-msft commented

SAML Token encryption

Hello,

this relates to https://docs.microsoft.com/en-us/answers/questions/2380/decrypt-saml-response.html

Unfortunately the vendor on the ServiceProvider side supports only SAML assertions that use the following encryption formats:
• 3DES
• AES128
• AES192
• AES256

Keys should use RSA OEAP encryption.
SOURCE: https://support.citrix.com/article/CTX200178

Is there a way to tell which encryption Azure uses?

Thanks

azure-ad-saml-sso
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hello @Pavol-6727,
Just checking in to see if the below answer helped. If this answers your query, please don’t forget to click "Accept the answer" and Up-Vote for the same, which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.
Thanks,

0 Votes 0 ·

1 Answer

sikumars-msft avatar image
0 Votes"
sikumars-msft answered

Hello @Pavol-6727,

Thanks for reaching out.

Azure AD uses AES-256 to encrypt the SAML assertion data. To learn more about, refer.

Hope this helps.


Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.