Revisiting SignatureMethod Algorithm

Question

Following this question we've now run into a scenario on APM 11.6.1 where the SAML response message is rejected by the SP. In this instance the SP is Kentor AuthServices Owin Middleware. The most recent update to this component means only SHA256 or stronger signatures are accepted. Have there been in changes in later versions or are there any plans to allow the SignatureMethod Algorithm to be configured to something stronger than http://www.w3.org/2000/09/xmldsigrsa-sha1?

kunjan · Answer

Yes, this is fixed in v12.0&nbsp;

kunjan_118660 · Answer

Yes, this is fixed in v12.0&nbsp;

sharptooth · Answer

Thanks kunjan - this is good to know, we will have to plan an upgrade!&nbsp;

sharptooth · Answer

Thanks kunjan - this is good to know, we will have to plan an upgrade!&nbsp;

Forum Discussion

Revisiting SignatureMethod Algorithm

4 Replies

Recent Discussions

Issue on license renewal

Maximum throughput of f5 ltm

iRule cookie persistence and pool redirect

redirect not working

Access azure app service using f5 LTM

Related Content

TCP Nagle Algorithm

Add ssh-rsa to 17.1.1 host key algorithm

Intro to Load Balancing for Developers – The Algorithms

A New and Better Nagle Algorithm

Juice-Jacking Revisited