Skip to main content

What error do I receive?

Something went wrong
The response signature failed cryptographic validation

What have I done so far?

  • Domain claim completed
  • IDP configuration completed
    • Issuer URL
    • Login URL in IDP
    • Metadata URL from IDP
  • Attribute mapping (in the following order)
    • givenname -> DisplayName
    • surname -> DisplayName
    • emailaddress -> Email
  • Addition of IDP public certificate
    • Algorithm: RS256 (4096 bits) (20 years expiration)
    • Type: X509

Additional Information:

  • I tested on a development account where I created an org and connected it to a staging environment.
  • I tested in the production environment alongside the current IDP that is configured.
  • In both environments, I received the same error message.
  • The domain claim was made for both environments, which share the same domain but have different subdomains.

I did not find any mention of this issue in the documentation. What I thought might have happened is some kind of incompatibility between the IDP requirements and the SP.
Another hypothesis is in the attribute mapping—the format in which the IDP sends the attributes is completely different from what DocuSign requires, even though I mapped them as shown earlier.

Hello ​@MuriloGoncalves ,

Welcome to the Docusign Community and thank you for posting your concerns!

Is this the first time you are setting Single Sign-On in your production account?

Let us know if you need further assistance with this.


Best regards,

Nathaly | Docusign Community Moderator
"Select as Best" below if you find the answer a valid solution to your issue!


Hello ​@MuriloGoncalves ,

Are you able to provide the information that I previously requested? If so, please do so in a reply to this question so that I am able to further assist you with your issue.


Best regards,

Nathaly | Docusign Community Moderator
"Select as Best" below if you find the answer a valid solution to your issue!


Hello ​@MuriloGoncalves,

I hope you are doing well. 

If you found my response to be a useful solution to your question, could you please click the "Best Answer ✅" button at the bottom of the post? 

It helps other community members who might have similar questions. Thank you!

Best regards,
Marco Paulo | Docusign Community Moderator


Hey Mr. Nathaly and Mr. Marco - you don’t get any best answer till you provide one - nothing you wrote is at all helpful.

 

I have the same issue and yea it is the first time setting up sso.


Hello ​@MuriloGoncalves and ​@rfransix,

I hope you’re doing well. Thank you for bringing your question to this community. I apologize for the delay in responding.

The "The response signature failed cryptographic validation" error during SSO setup typically occurs when there is a mismatch between the SAML response signature from the Identity Provider and the certificate configured in Docusign.

To possibly solve the issue:

  • Re-export the current signing certificate from your IdP and re-upload it to Docusign

If you continue to encounter errors, I recommend that you submit a support case so that our support team can take a closer look at the issue. Open a case in the Docusign Support Center

If you found the response to be a useful solution to your question, please mark it as the best answer by clicking “Select as Best” to make it easier for other users to find. Let us know if you need further assistance with this. Thank you!

 

Best regards,

Jenny | Docusign Community Moderator

"Select as Best" below if you find the answer a valid solution to your issue.

 

 

 


Reply