Page created: 5 Jul 2022
|
Page updated: 24 May 2023
Digital signing is required for browser-based single sign-on (SSO) tokens and single logout (SLO) messages sent through POST or redirect bindings.
Digital signing is also required for WS-Trust STS service provider (SP) connections, for signing the outbound SAML security tokens.
Remember: Configuring digital signatures for SP
connections is just one step in configuring an SP connection. For more information, see
SP connection management.
For browser-based SSO, digital signing is not always required for profiles using the artifact or SOAP bindings unless you chose to sign the SAML assertion on
, or the artifact resolution messages on .If digital signing is not required, PingFederate does not show the Digital Signature Settings tab.