When performing SAML 2.0 authentication using SSO with SAML 2.0 you face the error message "Signature validation with the configured primary certificate failed..." or "CX_SEC_SXML_ERROR: SSFW_KRN_VERIFY failed with: Signature verification failed (for signer) or Envelope failed (for recipient)". The error appears in the SAML 2.0 traces which can be collected with the Security Diagnostic tool.
SAP enhancement package 2 for SAP NetWeaver 7.0
SAP NetWeaver 7.3
SAP enhancement package 1 for SAP NetWeaver 7.3
SAP NetWeaver 7.4
SAP NetWeaver 7.5 and higher
SAML2.0 CX_SEC_SXML_ERROR SSFW_KRN_VERIFY Signature verification validation SSFW_KRN_VERIFY failed with: Signature verification failed , KBA , BC-SEC-LGN-SML , SAML 2.0 for ABAP , How To
About this pageThis is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP ONE Support launchpad (Login required).
Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.