on 11-21-2014 3:18 PM
Hi,
We are running into a condition 503 Service Unavailable when a user logs in via SAML2. To replicate the scenario I log into the SAML idp which tkes me to the portal. I click logoff which then puts me back onto the idp login page. I login again and then get a 503 error. This started happening after activating SAML2 in the portal. The Portal is running on NetWeaver 7.31 sp11.
In the default trace I see the following.
#2.0 #2014 11 11 16:10:49:241#0-500#Error#com.sap.engine.services.servlets_jsp.Security#
com.sap.ASJ.web.000657#BC-JAS-WEB#servlet_jsp#C0008E96B61600AF0000000000008E2C#643695450000000004#sap.com/irj#com.sap.engine.services.servlets_jsp.Security#J2EE_GST_SWP#0##2B438FBD69E711E497D10000265E035A#ec29bc3669e611e494890000265e035a#ec29bc3669e611e494890000265e035a#0#Thread[HTTP Worker [@614087135],5,Dedicated_Application_Thread]#Plain##
Service not available. Details: The server was overloaded. Impossible to process data.#
Hi,
we are also facing the same issue, but setting DoNotLogoutResources as described in Note 2133307 didn't help.
Was anybody able to solve the issue?
Regards
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Bertrand,
thank you for the feedback. I also raised a ticket but they only told us to maintain DoNotLogoutResources and I think SAP is also wondering why this is not working for us :-).
Can you tell me your exact value of the DoNotLogoutResources?
We have SECURITY-EXT 7.31.16.1 (SP16 PL1). Is there a Note, etc. with the info which SP is affected?
Regards
Tobias
Hello,
We are facing same issue - we are on Ep NW 7.30 SPS 12.
I could find below SAP Notes which were recently released
2133307 - Improve the DoNotLogoutResources Option in SAML 2.0
Note says tp edit parameter DoNotLogoutResources by adding URL - /irj/servlet/prt/portal/prtroot/com.sap.portal.dsm.Terminator in SAP NetWeaver Administrator under Configuration -> Authentication and Single Sign-On -> Authentication -> Components, in the SAML2LoginModule.
Is that we need to Edit the Login Module Options and add this?
Did any one give a try? Please suggest
Thanks,
Subbu
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
We applied the patch from 2133307 - Improve the DoNotLogoutResources Option in SAML 2.0.
We also applied the DoNotLogoutResources fix. The patch helped to reduce the frequency of the Server Overloaded error. We are still getting the Server Overloaded error under certain rare circumstances though.
Regards.
Hi,
I have exactly the same issue on the same context
On my side I am in NW 7.4 SP7 and I have redirected the logout page to our Intranet.
I am interresting on answers too
Bruce, do you have an idea how to redirect to irj/portal in HTTP after HTTPS SAML authentication ?
Kind Regards
Bertrand
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
82 | |
10 | |
10 | |
9 | |
6 | |
6 | |
5 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.