SAML Token encryption

Pavol 1 Reputation point


this relates to

Unfortunately the vendor on the ServiceProvider side supports only SAML assertions that use the following encryption formats:
• 3DES
• AES128
• AES192
• AES256

Keys should use RSA OEAP encryption.

Is there a way to tell which encryption Azure uses?


Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,545 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Siva-kumar-selvaraj 15,601 Reputation points

    Hello @Pavol ,

    Thanks for reaching out.

    Azure AD uses AES-256 to encrypt the SAML assertion data. To learn more about, refer.

    Hope this helps.

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments No comments