Hello,
Getting this error when trying to connect to Box (using the VA based connector):
“Invalid_grant” “signature verification failed”
Not sure where sig verification comes into play.
The app on the box side is configured as a JWT app.
Appreciate any help.
I have debug this issue, I have not faced the issue. Box could not verify that the JWT sent by SailPoint was properly signed with the expected private key. due to key mismatch this kind of issues may occur. could you please check in Key mismatch
Wrong private key configured in SailPoint
Corrupted or poorly formatted key
Wrong algorithm or app type
Clock skew
Thanks Narayana.
I provided the cert to the Box app team and it was imported successfully.
Can explain a little more what you mean by “verify that the JWT sent by SailPoint was properly signed with the expected private key. due to key mismatch”?
@mario_rod Can you please confirm if the test connection was successful after applying the solution?
@mario_rod Sure! I mean that the private key configured in SailPoint must match the public key uploaded in the Box app. If they don’t match, Box can’t verify the JWT signature, and you’ll get a ‘signature verification failed’ error.”
@narayanag that’s what was done and verified but the error was still appearing.
In the end the issue was to that the appl. team created a different cert and Box was using the wrong one to sign the jwt. I had the app team delete the 2nd cert and that solved the issue.
In all fairness, the SP docs are a little ambiguous and not properly documented.
Thanks for the help though!
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.
