SAML Authentication

Can someone please help me understand where I’m going wrong. I’m trying to get SAML authentication running under docker on 2.1.

I have a certificate file from an authority in p12 format. I’ve used openssl to extract the cert and key:

openssl pkcs12 -in cert.pfx -nocerts -out sp.key -nodes
openssl pkcs12 -in cert.pfx -nokeys -out sp.crt

I’ve then added these directly into the settings-custom.php file without the —begin etc

When trying to log in, I can see the page redirection is happening to the provider, I can see the SAML response contains the correct information (UserName etc) but get a cert error when landing back in Xibo:

Error: SAML SSO failed: invalid_response. Last Reason: openssl_x509_read(): supplied parameter cannot be coerced into an X509 certificate! Exception Type: OneLogin\Saml2\Error

As far as I can tell the certs are in the correct format. I’ve tried exporting them again but same error.
Has anyone any idea’s?

Many thanks.