Decrypt SAML response

Dinesh Radadiya 1 Reputation point
2019-12-06T11:35:45.313+00:00

If token encryption is activate in azure active directory then how we can decrypt SAML response at client side ?

We are able to decrypt SAML response if token encryption is deactivate but not able to decrypt while it activate.

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
14,649 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. KAREDD-MSFT 391 Reputation points Microsoft Employee
    2019-12-06T14:17:31.35+00:00

    Hi @Dinesh Radadiya ,

    When enabling token encryption in the Azure AD portal, you would have to provide the public key of the cert. On the application side, you have to use the private key of the same certificate to decrypt it.

    1 person found this answer helpful.
    0 comments