OPENIG as SAML Provider with fedlet.

This topic has 0 replies, 1 voice, and was last updated 3 years, 9 months ago by ak.tokas.

  • Author
  • #18859

    Hi Everyone,

    While doing a POC with OpenIG as SAML Provider i.e. with Fedlet.

    I was able to test the configurations provided in the gateway guide(4.5) and it was working fine when i configured the IDP and SP in Top Level Realm.

    I tried the same configurations in a sub-realm,
    with pretty much same conditions,
    When i try to access the ^/saml url of my openig setup i am redirected to openam for authentication, it is working fine as i am redirected to the realm login page which i want.
    But, after entering correct credentials, my browser keeps redirecting to different url with SAML response changing each second, it is like stuck in the redirect loop.
    After checking log files i found the this is the root cause.

    WED SEP 13 14:06:46 IST 2017 WARNING {SamlFederationHandler}/handler — addAttributesToSession: Attribute statement was not present in assertion

    Even though i have configured the IDP and SP exactly in the same way as i did in top level realm, but still it is giving me this error.
    Do i have to do anything extra to configure federation in a particular realm??? Or Am is assertion mapping different from sub-realms?? Any suggestions would be appreciated.
    Thanks in Advance,
    Akshay Kumar

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.

©2021 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?