Почему возникает ошибка в SimpleSAMLphp при проверке подписи?

Question

Дмитрий @falcon_sapsan

DevOps

PHP

Почему возникает ошибка в SimpleSAMLphp при проверке подписи?

Пробую настроить SimpleSAMLphp, для авторизации через WSO2 IS.
в authsources.php

'wso2-sp' => array(
      'saml:SP',
      'entityID' => 'localhost',
     'idp' => 'localhost',
     'discoURL' => NULL,
         'certificate' => 'cert.pem',
         'privatekey' => 'cert.pem',
         'privatekey_pass' => 'xxxx' 
     )

в saml20-idp-remote.php

$metadata['localhost'] = array(
    'name' => array(
    'en' =>  'WSO2 IS',
    'no' =>  'WSO2 IS',
),
    'description'   =>  'Login with WSO2 IS SAML2 IdP.',
    'SingleSignOnService'  =>  'https://localhost:9443/samlsso',
    'SingleLogoutService'  => 'https://localhost:9443/samlsso',
    'certFingerprint'      => '76794061128B742441515DA53F09138E65415422'
);

Сертификаты создаю так

openssl genrsa -out rootCA.key 2048
openssl req -x509 -new -key rootCA.key -days 10000 -out rootCA.crt
openssl genrsa -des3 -out private.key 2048
openssl req -new -key cert.key -out cert.csr
openssl x509 -req -in cert.csr -CA rootCA.crt -CAkey rootCA.key -CAcreateserial -out cert.crt -days 5000
cat cert.key cert.crt > cert.pem

certFingerprint получал так:
cat cert.crt | openssl x509 -fingerprint | grep SHA1 | sed "s/^[^=]*=//g" | sed "s/://g"

Пробовал с self signed сертификатами - ошибка такая же..

В процессе настройки смотрел по этим ссылкам
https://simplesamlphp.org/docs/1.5/simplesamlphp-i...
www.zeitoun.net/articles/configure-simplesaml-1.3-...
https://docs.wso2.com/display/IS530/Configuring+Si...

Mar 17 13:24:41 localhost simplesamlphp[12687]:
Mar 17 13:24:41 localhost simplesamlphp[12687]: 3 [559911597e] Failed to decrypt symmetric key: Failure decrypting Dataarray (#012)
Mar 17 13:24:41 localhost simplesamlphp[12687]: 3 [559911597e] Decryption failed: Failed to parse decrypted XML. Maybe the wrong sharedkey was used?array (#012)
Mar 17 13:24:41 localhost simplesamlphp[12687]: 3 [559911597e] SimpleSAML_Error_Error: UNHANDLEDEXCEPTION
Mar 17 13:24:41 localhost simplesamlphp[12687]: 3 [559911597e] Backtrace:
Mar 17 13:24:41 localhost simplesamlphp[12687]: 3 [559911597e] 0 /var/www/simplesamlphp/www/module.php:182 (N/A)
Mar 17 13:24:41 localhost simplesamlphp[12687]: 3 [559911597e] Caused by: Exception: Failed to decrypt XML element.
Mar 17 13:24:41 localhost simplesamlphp[12687]: 3 [559911597e] Backtrace:
Mar 17 13:24:41 localhost simplesamlphp[12687]: 3 [559911597e] 6 /var/www/simplesamlphp/vendor/simplesamlphp/saml2/src/SAML2/Utils.php:536 (SAML2_Utils::decryptElement)
Mar 17 13:24:41 localhost simplesamlphp[12687]: 3 [559911597e] 5 /var/www/simplesamlphp/vendor/simplesamlphp/saml2/src/SAML2/EncryptedAssertion.php:88 (SAML2_EncryptedAssertion::getAssertion)
Mar 17 13:24:41 localhost simplesamlphp[12687]: 3 [559911597e] 4 /var/www/simplesamlphp/modules/saml/lib/Message.php:371 (sspmod_saml_Message::decryptAssertion)
Mar 17 13:24:41 localhost simplesamlphp[12687]: 3 [559911597e] 3 /var/www/simplesamlphp/modules/saml/lib/Message.php:550 (sspmod_saml_Message::processAssertion)
Mar 17 13:24:41 localhost simplesamlphp[12687]: 3 [559911597e] 2 /var/www/simplesamlphp/modules/saml/lib/Message.php:524 (sspmod_saml_Message::processResponse)
Mar 17 13:24:41 localhost simplesamlphp[12687]: 3 [559911597e] 1 /var/www/simplesamlphp/modules/saml/www/sp/saml2-acs.php:120 (require)
Mar 17 13:24:41 localhost simplesamlphp[12687]: 3 [559911597e] 0 /var/www/simplesamlphp/www/module.php:139 (N/A)
Mar 17 13:24:41 localhost simplesamlphp[12687]: 3 [559911597e] Error report with id bd46e6bf generated.

Подскажите куда копать?