Built something you're proud of? Tell the story. A quick G2 review of App Engine or Build Agent helps other developers see what's possible on ServiceNow. Share your experience.

Okta - ServiceNow integration ,SAML Logout request creation failed.

naveenreddy0871
Tera Contributor

Monday - last edited Monday

Hi , Requesting help on this..

Receiving the following error while testing the SSO integration with Okta.

SSO Logout Test Results

SAML Logout request creation failed
BCFKS KeyStore unable to recover private key (saml2sp): Error finalising cipher data: mac check in CCM failed
Cannot logout of IDP's session
IDP's Login connection failed. Session does not exist on IDP to test logout.

 

 

0 Helpfuls
  • 168 Views
1 REPLY 1

Tanushree Maiti
Kilo Patron

Monday

Hi @naveenreddy0871 

 

Ensure to use this keystore, configure the Identity Provider record in the Encryption and Signing section:

  1. Set Signing/Encryption Key Alias to saml2sp.
  2. Set Signing/Encryption Key Password to saml2sp.
  3. Set Signing Signature Algorithm to http://www.w3.org/2000/09/xmldsig#rsa-sha1.
  4. Select the appropriate checkboxes based on your requirements:
    • Encrypt Assertion
    • Sign AuthnRequest
    • Sign LogoutRequest
  5. Select Save.

Refer: KB0753604 Configure a signing keystore for SAML SSO encryption and signing 

 

 

Please mark this response as Helpful & Accept it as solution if it assisted you with your question.
Regards
Tanushree Maiti
ServiceNow Technical Architect
Linkedin:
0 Helpfuls