SHA-1 Signature for SAML

The SHA-1 Digital Signature Algorithm and Digest Algorithms as part of the SAML assertion are no longer supported.

Why we no longer support this feature

SHA-1 is not considered sufficiently secure.

Are you affected?

You are affected if you are using SHA-1 Digital Signature Algorithm and Digest Algorithms as part of the SAML assertion (specifically, if you are using Salesforce SSO).

Action required

Switch to SHA-256 or higher signature algorithms. For more information, see SAML SSO with GoodData.

What happens if you have not switched to SHA-256

You cannot log in to the GoodData platform via SSO.

Need help?

If you have questions, contact GoodData Support.