Werk #14979: SAML: remove empty encryption certificate entry from metadata
Component | Setup, site management | ||||
Title | SAML: remove empty encryption certificate entry from metadata | ||||
Date | Feb 20, 2023 | ||||
Level | Trivial Change | ||||
Class | Bug Fix | ||||
Compatibility | Compatible - no manual interaction needed | ||||
Checkmk versions & editions |
|
Encryption is currently not a supported security feature. However, Checkmk's service provider metadata endpoint listed an empty entry for the encryption certificate. This may cause issues with some identity providers, which flag the metadata XML as malformed (e.g. NetIQ). This has been fixed by removing the empty encryption certificate entry from the metadata.