Some user agents cannot support Secure Socket Layer (SSL) to protect HTTP. To support such users, you can enable the access to SAML endpoints over HTTP.
We recommend the use of SSL to prevent eavesdroppers from accessing authentication information in SAML messages. You can protect authentication information with encryption and by using the back channel.
For more information, see the following
If you change the configuration of your service provider, update the configurations of any identity providers that trust your service provider to match.