Tagged: #OpenAM, Access Management, federation
This topic has 2 replies, 2 voices, and was last updated 4 years, 2 months ago by aniru2dh.
-
AuthorPosts
-
May 29, 2018 at 2:39 pm #21939
aniru2dh
ParticipantHi Team,
We are trying to setup Federation between OpenAM 5.0 and Service now where IDP is OpenAM and SP is Service now. We are facing issue after saml assertion is posted to service now during both idp/SP initiated login.
On Reaching Service now it says “Could not valid saml response”.
IS there any official document available on the OpenAM for integrating service now. Any help would be appreciated.
Below is the inverse sequence of errors observed at service now and there are no errors on openam.
2018-05-28 06:18:21
Error *** Script: SAML2.0 signature/certificate validation failed: no thrown error com.glide.ui.ServletErrorListener2018-05-28 06:18:21
Information Status message: null *** Script2018-05-28 06:18:21
Information Got signature *** Script2018-05-28 06:18:21
Information certificate valid date to: Wed Mar 04 07:03:23 PST 2026 *** Script2018-05-28 06:18:21
Error SAML2ValidationError: Signature did not validate against the credential’s key SAML22018-05-28 06:18:21
Information Signature did not validate against the credential’s key *** Script2018-05-28 06:18:21
Information Status code: urn:oasis:names:tc:SAML:2.0:status:Success *** Script
2018-05-28 06:18:21
Information Signature not in response, attempting to get signature from assertion *** Script2018-05-28 06:18:21
Information Read from property : glide.authenticate.sso.saml2.clockskew, value : 180 *** Script2018-05-28 06:18:21
Information certificate valid date from: Wed Aug 03 08:03:23 PDT 2016 *** Script2018-05-28 06:18:21
Information Will create a new SSO_Helper object with no auth resolve *** Script2018-05-28 06:18:21
Error SAML2: SAML2ValidationError: Signature did not validate against the credential’s key: no thrown error com.glide.ui.ServletErrorListenerMay 30, 2018 at 12:09 am #21943grk
Participant@aniru2dh, Check if signing cert public key was imported into SP system OR public key is matching or not.
Here is Service Now SAML setup doc.
https://docs.servicenow.com/bundle/geneva-servicenow-platform/page/integrate/saml/task/t_InstallTheIdentityProviderCert.htmlThanks,
May 30, 2018 at 11:54 am #21956 -
AuthorPosts
You must be logged in to reply to this topic.