Hello,
Getting this error when trying to connect to Box (using the VA based connector):
“Invalid_grant” “signature verification failed”
Not sure where sig verification comes into play.
The app on the box side is configured as a JWT app.
Appreciate any help.
I have debug this issue, I have not faced the issue. Box could not verify that the JWT sent by SailPoint was properly signed with the expected private key. due to key mismatch this kind of issues may occur. could you please check in Key mismatch
Wrong private key configured in SailPoint
Corrupted or poorly formatted key
Wrong algorithm or app type
Clock skew
Thanks Narayana.
I provided the cert to the Box app team and it was imported successfully.
Can explain a little more what you mean by “verify that the JWT sent by SailPoint was properly signed with the expected private key. due to key mismatch”?
@mario_rod Can you please confirm if the test connection was successful after applying the solution?
@mario_rod Sure! I mean that the private key configured in SailPoint must match the public key uploaded in the Box app. If they don’t match, Box can’t verify the JWT signature, and you’ll get a ‘signature verification failed’ error.”
