SHA-1 Signature for SAML

The SHA-1 Digital Signature Algorithm and Digest Algorithms as part of the SAML assertion are deprecated and will stop working on August 31, 2020.

Contents:

Why we deprecated this feature

SHA-1 is not considered sufficiently secure.

Are you affected?

You are affected if you are using SHA-1 Digital Signature Algorithm and Digest Algorithms as part of the SAML assertion (specifically, if you are using Salesforce SSO).

Action required

Before August 31, 2020, check whether you are using the SHA-1 Digital Signature Algorithm and Digest Algorithms. If you are using them, switch to SHA-256 or higher signature algorithms. For more information, see SAML SSO with GoodData.

What will happen if you do not switch to SHA-256

You will not be able to log in to the GoodData platform via SSO.

Need help?

If you have questions, contact GoodData Support.