Discuss this help topic in SecureBlackbox Forum
Encrypt assertions included into IdP responses
You need to set TElSAMLIdentityProvider.EncryptAssertions property to 'true'. Also TElSAMLIdentityProvider.EncryptionCertificate property must be initialized with a certificate to be used for encryption.