@vennemp @Anurag_Byakod I had this same problem and it stemmed from certificate file formatting. I ended up running an openssl x509 -in idpCert.pem -out idpCert1.pem And I pointed the SAML config at the idpCert1.pem, reloaded auth, logged out of the admin account and I was logged right in. After diff-ing the two, it seems that when copying and pasting (into cat, in my case) the cert info from Okta, it doesn't maintain the format. And while running an openssl x509 -in idpCert.pem -noout -text _will_ give you the correct output for the cert, something in Splunk barfs when it sees the bad formatting. Outputting it to a new pem using openssl formats it correctly. Good luck
... View more