Environment
Novell Access Manager 3.1 Linux Identity Server
Situation
Federated with a Service Provider and the SAML SP Authn Request fails due to:
<amLogEntry> 2012-06-06T16:41:11Z INFO NIDS IDFF: AM#500106006: AMDEVICEID#XXXXXXXXX: Validation failure on message from urn:xxxxxxx : Signature validation failed </amLogEntry>
<amLogEntry> 2012-06-06T16:41:11Z INFO NIDS IDFF: AM#500106006: AMDEVICEID#XXXXXXXXX: Validation failure on message from urn:xxxxxxx : Signature validation failed </amLogEntry>
Resolution
This can be caused by the incorrect certificate being in the metadata provided by the SP. The SP either needs to correct their metadata, or you can manually edit and re-import with the correct certificate.