Our Products:   CompleteFTP  edtFTPnet/Free  edtFTPnet/PRO  edtFTPj/Free  edtFTPj/PRO
–1 vote
in CompleteFTP by (51.4k points)
Recently we've had two cases of SAML authentications failing in version 13.1.3 with a 500 server error message and the message 'Invalid algorithm specified' showing in the logs. In both cases the SHA256 hashing algorithm was being used.

1 Answer

0 votes
by (51.4k points)
edited by
Best answer

The problem was solved in both cases, by re-importing the site's SSL certificate after it'd been modified to specify the 'Microsoft Enhanced RSA and AES Cryptographic Provider' as the CSP.

This can be done using the OpenSLL command,

openssl pkcs12 –export –in cert.pem –inkey key.pem –CSP "Microsoft Enhanced RSA and AES Cryptographic Provider" –out certAndKey.pfx

It can also be done using the certutil command.