• emarmal1 replied to the topic IDP proxy in the forum Access Management 3 years, 1 month ago

    I found the issue with no local user, it was setting ‘Use Name ID as User ID’ in the IdP proxy’s SP

  • emarmal1 replied to the topic IDP proxy in the forum Access Management 3 years, 1 month ago

    I have user with same user id as nameID, but it is not working, these are messages I see in federation log:

    libSAML2:10/31/2018 02:20:39:352 PM UTC: Thread: TransactionId DefaultLibrarySPAccountMapper.getAutoFedUser: Auto federation is disabled.
    libSAML2:10/31/2018 02:20:39:352 PM UTC: Thread: TransactionId SAML2MetaCache.getEntityConfig:…[Read more]

  • emarmal1 replied to the topic IDP proxy in the forum Access Management 3 years, 1 month ago

    This is the subject node in assertion issued by ADFS:

    <saml:Subject>
    <saml:NameID Format=”urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress”>[email protected]</saml:NameID>
    <saml:SubjectConfirmation Method=”urn:oasis:names:tc:SAML:2.0:cm:bearer”><saml:SubjectConfirmationData NotOnOrAfter=”2018-10-31T10:58:12Z”…[Read more]

  • emarmal1 started the topic IDP proxy in the forum Access Management 3 years, 1 month ago

    I configured IDP proxy as described in ‘Configuring OpenAM IDP Proxy with ADFS and remote Service Provider’
    I am getting login prompt in IDP (ADFS), but then it fails in transient authentication in IDP proxy with error:

    ERROR: spAssertionConsumer.jsp: SSO failed.
    com.sun.identity.saml2.common.SAML2Exception: No local user being mapped.

    The use…[Read more]

  • I configured IDP proxy as described in ‘Configuring OpenAM IDP Proxy with ADFS and remote Service Provider’
    I am geeting login prompt in IDP (ADFS), but then it fails in transient authentication in IDP proxy with error:

    ERROR: spAssertionConsumer.jsp: SSO failed.
    com.sun.identity.saml2.common.SAML2Exception: No local user being mapped.

    The user…[Read more]