trace.txtsamlassertion.txtHi Everyone, Am also facing the similar issue. I have trust store configured which have list of Telstra chain cert like this.

Keystore vhost_truststore_client

Truststore Telstra_CA_Chain.p7b

Telstra AD Object CA1

Telstra Policy CA1

Telstra Root CA

But still am getting the ERROR_VALIDATING_SIGNATURE. I want to know how does this validation is working. Do I need to have the particular X509 cert configured in my trust store as well? Or only Telstra root cert chain will suffice.

Am attaching the Apigee trace log and SAMLassertion here for my request.