Ignore or Enforce the SAML Assertion Signature or SAML Message Signature


THE INFORMATION IN THIS ARTICLE APPLIES TO:

  • EFT v7.4.11 and later

DISCUSSION

To ignore or enforce the SAML assertion signature or SAML message signature, create the registry settings below.

(This is useful if you have separate certificates for encryption and signing.)

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\GlobalSCAPE Inc.\EFT Server 7.4\

Type: DWORD

Value name: SamlAssertionSignatureEnforcementLevel

Level of SAML assertion signature enforcement:

    0 - required (default)

    1 - not required if message signed

    2 - enforce if present

    3 - ignore result

    4 - do not attempt verification.

Restart Required: yes

Backup/Restore: yes

----------------------------

Type: DWORD

Value name: SamlMessageSignatureEnforcementLevel

Level of SAML message signature enforcement:

    0 - required

    1 - enforce if present (default)

    2 - ignore result

    3 - do not attempt verification

Restart Required: yes

Backup/Restore: yes