Test connection of newly configuring IDP shows the Error: SAML2ValidationError: Unable to locate SAML 2.0 certificate if x509_certificate is not set - Support and Troubleshooting

Test connection of newly configuring IDP shows the Error: SAML2ValidationError: Unable to locate SAML 2.0 certificate if x509_certificate is not set Issue  Symptoms 1. Setting up a new ADFS IDP with x-509 signing certificate is mapped, showing the error:

01/16/19 15:37:26 (544) SAML assertion is not encrypted. 01/16/19 15:37:26 (546) SAML2ValidationError: Unable to locate SAML 2.0 certificate. 01/16/19 15:37:26 (547) Could not validate SAMLResponse

You need to enable debug logging for the multiple provider SSO integration to validate the problem. Then perform a "Test connection" on the IdP record. Check for the SAML response from the System LOG and verify IDP is mapped with the required certificate.

2. In the IDP form, the certificate is properly setup

Cause Even the certificate has added in the related list of IDP records, it has not attached to the IDP record properly in the XML view of the record

Resolution To avoid the problem please:

Login as administrator. Open the IdP record Right click on the top bar and select "export XML" on the IdP record If the XML output has the value like this: You may need to add the Certificate display name and sys_id and upload the XML back sys_id_of the_certificate eg:- 1e762253db3def00a67ed790cf96192f Do the test again. Note : You need to enable debug logging for the multiple provider SSO integration to validate the problem.