KMMR Online Tools

SAML Metadata Checklist

Documentation is being prepared. Please check back soon.

EntityID and Endpoints1

  • Verify that EntityID values are not mixed across production and test environments.
  • Check that ACS / SSO / SLO URLs match exactly, including host, path, and trailing slash.
  • Confirm which bindings are expected: HTTP-Redirect, HTTP-POST, or both.

Certificates and Signing2

  • Make sure the signing certificate matches the current metadata version.
  • Confirm whether signing and encryption are required on each side.
  • Remove or replace stale certificates that no longer match the active metadata.

NameID and Attribute Assumptions3

  • Confirm that both sides agree on the expected NameID format.
  • Check whether required attributes such as mail, displayName, uid, or entitlement are defined.
  • Verify that the remote implementation can handle multi-value attributes correctly.

Use This Before Testing4

After the metadata review, move to the public guide that matches the role you need.

Open the SAML SP test guide

Open the SAML IdP test guide

Back to top page

If you found this tool helpful, we’d love for you to share it on social media!


We display ads to support the operation of this site. We understand that it may be inconvenient, but we appreciate your understanding.