I have a client who implemented an ADFS 2.0 farm, initially for use with O365. The third-party code-signing certificate uses SHA256 for the Signature Algorithm and SHA256rsa for the Signature Hash Algorithm. My client now wants to federate with a relying party who still uses ADFS 1.x, which doesn't support SHA256 and SHA256rsa algorithms. Has anyone else dealt with this situation and found a work-around? Replacing the code-signing certificate with one that uses a different algorithm is not an option.
Thank you.
Ian Kahn
InfraScience, LLC
Alpharetta, GA
ikahn@infrascience.com