Click here to expand for more information on digest algorithms.
The following table provides the list of digest algorithms available and their respective URI.
Digest algorithm name
Digest algorithm URI
MD5
http://www.w3.org/2001/04/xmldsigmore#md5
RIPEMD160
http://www.w3.org/2001/04/xmlenc#ripemd160
SHA1
http://www.w3.org/2000/09/xmldsig#sha1
SHA256
http://www.w3.org/2001/04/xmlenc#sha256
SHA384
http://www.w3.org/2001/04/xmldsigmore#sha384
SHA512
http://www.w3.org/2001/04/xmlenc#sha512
If you need to sign the SAML response using an authenticated user's tenant keystore, please add the following configuration. (By default, the response is signed using the certificate that belongs to the tenant where the service provider is registered). This property must be added if the SAML authenticator version in the WSO2 Carbon products that you are using is 4.2.2 or higher (org.wso2.carbon.identity.authenticator.saml2.sso_4.2.2.jar). Add the <UseAuthenticatedUserDomainCrypto>propertyavailable in the <IS_HOME>/repository/conf/identity.xml file as shown below.