Authentication failed: SAML login failed: ['invalid_response'] (Signature validation failed. SAML Response rejected)

I’m trying to setup third party login on our Ironwood installation of Open edX with our ADFS system.

On the LMS, after I click the sign in button and select our school, I am taken to our ADFS login page. I authenticate to the ADFS system and am returned to our Open edX platform with an error at the top of the page reading:

An error occurred when signing you in…

Error Details:
Authentication failed: SAML login failed: [‘invalid_response’] (Signature validation failed. SAML Response rejected)

In the LMS system logs I can see the SAML request and response. After reading the error message, I used https://www.samltool.com/validate_response.php to validate the response. SAMLTool indicated that it was a valid response.

Any ideas where I could go next or why Open edX would feel that this is an invalid response?

Hi Twlichty,

Please read following posts, it may help you.

https://groups.google.com/forum/#!msg/openedx-ops/d-rmACND180/ZuLbMh9SIAAJ

Regards
Deep

Thanks @deep06. I had read those and nothing changed.

I was able to integrate the OneLogin test SAML connector on my installation of Open edX without any issues. I’m thinking this may be an issue with the ADFS setup.