Werk #14979: SAML: remove empty encryption certificate entry from metadata
|Component||Setup, site management|
|Title||SAML: remove empty encryption certificate entry from metadata|
|Date||Feb 20, 2023|
|Checkmk Edition||Checkmk Enterprise (CEE)|
|Checkmk Version||2.3.0b1 2.2.0b1|
|Compatibility||Compatible - no manual interaction needed|
Encryption is currently not a supported security feature. However, Checkmk's service provider metadata endpoint listed an empty entry for the encryption certificate. This may cause issues with some identity providers, which flag the metadata XML as malformed (e.g. NetIQ). This has been fixed by removing the empty encryption certificate entry from the metadata.