Validate SAML AuthN Request

This tool validates an AuthN Request, its signature (if provided) and its data.

Paste the AuthN Request if you want to also validate its signature (HTTP-Redirect binding), and paste also the X.509 public certificate of the Service Provider and the RelayState parameter. If the AuthN Request contains an encrypted element, the private key of the identity provider is also required.

In the validation process the Service Provider EntityId is checked and the target URL (IdP SSO endpoint).

SAML AuthN Request

Plain XML or EncodedDeflated.

SP EntityId Target URL, Destination of the AuthN Request

Private Key of the Identity Provider (to decrypt elements)

X.509 cert of the Service Provider (to check Signature)

Signature of the SAML AuthN Request

RelayState SigAlg

Ignore timing issues

Private key value is not stored

Any private key value that you enter or we generate is not stored on this site or on the OneLogin platform. Also, notice that this tool is provided via an HTTPS URL to ensure that private keys cannot be stolen.

For extra security, please do not use production keys on this site.