0 Replies Latest reply on Jul 24, 2018 9:10 AM by vinay_abhyankar

    objectidentifier mismatch 2.16.840.1.101.3.4.2.1

    vinay_abhyankar

      Hi All,

       

      I am currently using the picketlink as an IDP with sha1 alghorithm and it works like a charm.

       

      But soon I upgrade to sha256 using below configuration.

       

      <Handler

                  class="org.picketlink.identity.federation.web.handlers.saml2.SAML2SignatureGenerationHandler">

                  <!--

                      This is a optional configuration. By default, method http://www.w3.org/2000/09/xmldsig#rsa-sha1

                      and digest http://www.w3.org/2000/09/xmldsig#sha1 are used.

                  -->

                  <Option Key="SIGN_METHOD" Value="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>

                  <Option Key="SIGN_DIGEST" Value="http://www.w3.org/2001/04/xmlenc#sha256"/>

      </Handler>

       

      I am getting below error

       

      objectidentifier mismatch 2.16.840.1.101.3.4.2.1

       

      But I couldn't able to understand what this error is , am I missing any configuration.

       

      Please reply if anyone has any idea

       

      Regards,

      Vinay