OpenAM SP initiated SSO SAML integration issue
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎11-27-2013 11:12 AM
I'm using OpenAM and trying to integrate with SN Calgary using SAML 2. IdP is initiating SSO and at least an invalid password is correctly recognized but when I try to use a correct user/password I got following error message in OpenAM:
HTTP Status 400 - Error processing AuthnRequest. No plug-ins configured for this operation
type Status report
message Error processing AuthnRequest. No plug-ins configured for this operation
description The request sent by the client was syntactically incorrect (Error processing AuthnRequest. No plug-ins configured for this operation).
Apache Tomcat/6.0.20
What I can see in Servicenow log is:
2013-11-25 02:20:36 PM Information Stripping down the serviceURL: https://xxx.service-now.com/navpage.do to a base URL of: https://xxx.service-now.com *** Script
2013-11-25 02:20:36 PM Information Generating a Relay State of: https://xxx.service-now.com/navpage.do *** Script
2013-11-25 02:20:36 PM Information requestURI: / *** Script
2013-11-25 02:20:36 PM Information Redirecting to: https://extsignon-qa.xxx.com:443/amserver/SSORedirect/metaAlias/emplFed/idp?SAMLRequest=lVLLbtswEPwVgXeJethKTVgGVBtBDaSJYLk99MaQa4coHwqXUty/ryw7SHpoil65szOzM1wiNzrvWN2HJ7uD5x4wRCejLbLLpCK9t8xxVMgsN4AsCNbWX%2B9YnqSs8y444TSJakTwQTm7dhZ7A74FPygB33Z3FXkKoUNGqYaT4f6nhCHByzi27iURzlDLh44fIZGORJvRhLL8zPa2C6eA6midjZ95ciU6b7LZrKDcnPnA07Z92IFUHkSgBgKvteJIwXT6FiRVsiPRrfMCpnsrcuAagUTbTUXa%2B7Uoy1QsBBxEuRA3vBBwU5RyBvkhLRfz2eMIxIYjqgHeVhF72FoM3IaK5GlWxFkW5/N9nrM8ZUWZ5J/mP0jUXJP6rKxU9vhxrI8XELIv%2B30TNw/tfiIYlAR/P6L/O9Hv4HFKc2Qnq%2BVULZus%2B/dtf%2ByKv1ZMVv%2BWX9L3IlfJjp3dbzeN00r8imqt3cvaAw/jRcH3MJVjePi7jyzJphcl48MEZWC40rWUHhAJXV11//zRq98%3D&RelayState=https://lexmarkdev.service-now.com/navpage.do *** Script
2013-11-25 02:20:36 PM Information Query String (qs): null *** Script
2013-11-25 02:20:36 PM Information SAML Request xml: https://lexmarkdev.service-now.com *** Script
2013-11-25 02:20:36 PM Information No Deep Linking for this SAML request
It seems something between the Idp and ServiceNow it's not being resolved. Customer has several other application under its current identity manager using SAML 2.0. Any suggestion where to focus to get this resolved?
- Labels:
-
Integrations
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎11-27-2013 12:18 PM
Try going through my blog to make sure you did all the steps:
http://community.servicenow.com/blog/jasonpetty/installing-and-setting-opensso-use-your-saml-20-idp-servicenow
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎12-02-2013 11:30 AM
Hi,
yes I (we) reviewed/followed your blog but still can't make it work. Any other aspect/component we need to review,try?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎12-02-2013 01:23 PM
I would say it is time to get support or professional services involved in helping with the configuration then.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎12-02-2013 11:05 AM
Hi,
yes I (we) reviewed/followed your blog but still can't make it work. Any other aspect/component we need to review,try?
