Skip to Content
0
May 18, 2016 at 05:00 PM

Service Provider has received SAML2Response from Identity Provider whose destination does not match requested URL

1239 Views

Hello all . . . hoping for a little luck here.

We've configured a brand-new SAP Portal (our "service provider") for single sign-on via SAML2 authentication, using WebSphere as our identity provider.

I can confirm that I'm receiving information from the identity provider, as the troubleshooting wizard produces results. Unfortunately, no amount of Google-fu has turned up a response to the error I'm seeing. The error is weird because it's citing the use of Port 80, rather than the standard of 50000. The error, specifically, says, "Service Provider has received SAML2Response from Identity Provider [https://websphere.mycompany.com/idp/shibboleth] whose destination [https://portal.mycompany.com/saml2/sp/acs] does not match requested URL [http://portal.mycompany.com:80/irj/portal]."

My Service Provider settings configuration does state that /irj/portal should be the default redirect once a successful SAML assertion is received, but I have nothing which points to port 80.

I'm also attaching a defaultTrace file where I've cranked up the debugging, just to see what else I can see. Any ideas?

Attachments

pastedImage_2.png (51.0 kB)