SAML Token encryption

Pavol 1 Reputation point
2021-09-22T10:08:50.213+00:00

Hello,

this relates to https://learn.microsoft.com/en-us/answers/questions/2380/decrypt-saml-response.html

Unfortunately the vendor on the ServiceProvider side supports only SAML assertions that use the following encryption formats:
• 3DES
• AES128
• AES192
• AES256

Keys should use RSA OEAP encryption.
SOURCE: https://support.citrix.com/article/CTX200178

Is there a way to tell which encryption Azure uses?

Thanks

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,545 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Siva-kumar-selvaraj 15,601 Reputation points
    2021-09-22T15:33:27.84+00:00

    Hello @Pavol ,

    Thanks for reaching out.

    Azure AD uses AES-256 to encrypt the SAML assertion data. To learn more about, refer.

    Hope this helps.

    ------
    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments No comments