ADFS是否支持DSA密钥 [英] Does ADFS support DSA keys
问题描述
我正在使用DSA密钥并获得以下异常
I am using DSA keys and getting the following exception
联合服务在处理WS-Trust请求时遇到错误。
The Federation Service encountered an error while processing the WS-Trust request.
请求类型:http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue
Request type: http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue
其他数据
Additional Data
异常详细信息:
Exception details:
Microsoft.IdentityServer.Service.SamlProtocol.SamlProtocolException: MSIS1022:无法处理来自''的SAML响应。
Microsoft.IdentityServer.Service.SamlProtocol.SamlProtocolException: MSIS1022: Cannot process SAML Response from ''.
内部异常:从名称空间'http://www.w3.org/2000/09/xmldsig#'中启动元素'RSAKeyValue' 。找到命名空间'http://www.w3.org/2000/09/xmldsig#'中的元素'DSAKeyValue'。
Inner exception: Start element 'RSAKeyValue' from namespace 'http://www.w3.org/2000/09/xmldsig#' expected. Found element 'DSAKeyValue' from namespace 'http://www.w3.org/2000/09/xmldsig#'.
在Microsoft.IdentityServer.Service.Tokens.SamlMessageSecurityTokenHandler.ReadToken(XmlReader reader)
at Microsoft.IdentityServer.Service.Tokens.SamlMessageSecurityTokenHandler.ReadToken(XmlReader reader)
在Microsoft.IdentityModel.Tokens.SecurityTokenHandlerCollection.ReadToken(XmlReader reader)
at Microsoft.IdentityModel.Tokens.SecurityTokenHandlerCollection.ReadToken(XmlReader reader)
在Microsoft.IdentityModel.Tokens.SecurityTokenElement.ReadSecurityToken(XmlElement securityTokenXml,SecurityTokenHandlerCollection securityTokenHandlers)
at Microsoft.IdentityModel.Tokens.SecurityTokenElement.ReadSecurityToken(XmlElement securityTokenXml, SecurityTokenHandlerCollection securityTokenHandlers)
在Microsoft.IdentityModel.Tokens.SecurityTokenElement.GetSecurityToken()
at Microsoft.IdentityModel.Tokens.SecurityTokenElement.GetSecurityToken()
在Microsoft.IdentityServer.Service.SecurityTokenService.MSISSecurityTokenService.GetOnBehalfOfPrincipal(RequestSecurityToken request,IClaimsPrincipal callerPrincipal)
at Microsoft.IdentityServer.Service.SecurityTokenService.MSISSecurityTokenService.GetOnBehalfOfPrincipal(RequestSecurityToken request, IClaimsPrincipal callerPrincipal)
在Microsoft.IdentityServer.Service.SecurityTokenService.MSISSecurityTokenService.BeginGetScope(IClaimsPrincipal principal,RequestSecurityToken请求,AsyncCallback回调,对象状态)
at Microsoft.IdentityServer.Service.SecurityTokenService.MSISSecurityTokenService.BeginGetScope(IClaimsPrincipal principal, RequestSecurityToken request, AsyncCallback callback, Object state)
在Microsoft.IdentityModel.SecurityTokenService.SecurityTokenService.BeginIssue(IClaimsPrincipal principal,RequestSecurityToken请求,AsyncCallback回调,对象状态)
at Microsoft.IdentityModel.SecurityTokenService.SecurityTokenService.BeginIssue(IClaimsPrincipal principal, RequestSecurityToken request, AsyncCallback callback, Object state)
在Microsoft.IdentityModel.Protocols.WSTrust.WSTrustServiceContract.DispatchRequestAsyncResult..ctor(DispatchContext dispatchContext,AsyncCallback asyncCallback,Object asyncState)
at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustServiceContract.DispatchRequestAsyncResult..ctor(DispatchContext dispatchContext, AsyncCallback asyncCallback, Object asyncState)
在Microsoft.IdentityModel.Protocols.WSTrust.WSTrustServiceContract.BeginDispatchRequest(DispatchContext dispatchContext,AsyncCallback asyncCallback,Object asyncState)
at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustServiceContract.BeginDispatchRequest(DispatchContext dispatchContext, AsyncCallback asyncCallback, Object asyncState)
在Microsoft.IdentityModel.Protocols.WSTrust.WSTrustServiceContract.ProcessCoreAsyncResult..ctor(WSTrustServiceContract contract,DispatchContext dispatchContext,MessageVersion messageVersion,WSTrustResponseSerializer responseSerializer,WSTrustSerializationContext serializationContext,AsyncCallback asyncCallback,Object asyncState)
at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustServiceContract.ProcessCoreAsyncResult..ctor(WSTrustServiceContract contract, DispatchContext dispatchContext, MessageVersion messageVersion, WSTrustResponseSerializer responseSerializer, WSTrustSerializationContext serializationContext, AsyncCallback asyncCallback, Object asyncState)
 在Microsoft.IdentityModel.Protocols.WSTrust.WSTrustServiceContract.BeginProcessCore(消息requestMessage,WSTrustRequestSerializer requestSerializer,WSTrustResponseSerializer responseSerializer,String requestAction,String responseAction,String
at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustServiceContract.BeginProcessCore(Message requestMessage, WSTrustRequestSerializer requestSerializer, WSTrustResponseSerializer responseSerializer, String requestAction, String responseAction, String
推荐答案
不,AD FS仅支持非对称操作的RSA密钥。
No, AD FS supports only RSA keys for asymmetric operations.
这篇关于ADFS是否支持DSA密钥的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!