After Upgrading RH-SSO to Red Hat build of Keycloak, SAML SSO Fails with "org.keycloak.common.VerificationException: Error validating signature"

Solution Unverified - Updated -

Issue

  • After upgrading RH-SSO to RHBK, SAML SSO start failing with the error message org.keycloak.common.VerificationException: Error validating signature.
    The underlying cause recorded in the stack trace is the exception: javax.xml.crypto.MarshalException: It is forbidden to use algorithm http://www.w3.org/2000/09/xmldsig#rsa-sha1 when secure validation is enabled.

Environment

  • Red Hat Build of Keycloak
    • 22.0
    • 24.0
    • 26.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content