In DMP Identify in Production environment we have this “Norddjurs Kommune” where the configuration can be found here.

Connection from a Client ADFS is done with the metadata found here: /runtime/saml2auth/metadata.idp

And in the configuration the following is set:

However when the ADFS requests auth – it fails when setting the hash algorithm to sha256 . it works however when setting it to sha1 ..? why is that?

Answer:

WE need to complete the checklist for the following

–          The SSO binding on Identify side must be REDIRECT.

–          All SHA on both 2 sides are set to 256

–          Maybe restarting ADFS service to make sure it loads the up-to-date settings.

–          Using the metadata uploading for the connection between the ADFS side and Identify side.