ServiceNow instance is not sending an AuthnRequest to IdP
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-25-2014 12:46 PM
Hi,
I'm testing out our dev serviceNow instance SAML 2.0 capabilities with an IdP. After requesting a target resource at the service provider (instance.service-now.com), I get redirected to our configured IdP. The request does not contain a SAMLRequest with the AuthnRequest. As a result the IdP throws an exception.
1) Is there a SAML Properties setting in ServiceNow that I'm missing or is there something wrong with my instance and I should get it reset or SSO re-enabled.
2) Also I noticed that before I get redirected to the Identity Provider (IdP), there is a logout_redirect call issued. Is this a default action by ServiceNow to call this logout before the SAML SSO redirect to IdP.
GET https://dev295.service-now.com/navpage.do HTTP/1.1
GET https://dev295.service-now.com/logout_redirect.do?sysparm_url=https%3A//idp.provider.com%3A9031/idp/SSO.saml2 HTTP/1.1
GET https://idp.provider.com:9031/idp/SSO.saml2 HTTP/1.1
Thanks,
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-25-2014 01:38 PM
I logged in and looked around and looked logs and it looks like it doesn't know about SAML being configured all the way. It looks like it tries digest token according to the logs but I have not seen that before. I honestly don't know where to go from here. Maybe start with a new demo instance since this is a demo instance.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-25-2014 05:35 PM
Thanks for your time Jason. I'll give a new instance a shot.
