Hi Mohamed,
Probably you did not configure the right certificate on the IdP connector (just in case you can also confirm on SAML messages log that the response xml actually have a Signature node).
On IdP server settings configuration tab, you have to configure the certificate provided by your IdP server.
Regards
I dont know but is it possible to return the right UserData from Active Directory while configuring the wrong certificate ?