Let me paste in the resolution of the issue if anyone meets it later:
"As the error says, we need to import SAML metadata into the sub-account for Basic auth and API key only SSO to work.
"Maybe the SAML metadata was not imported into the sub-account as a trusted identity provider, check the configuration."
Step to upload SAML metadata:
- Go to mobile service cockpit, Settings->Security and click on "Test" buttton. Setting up trust should failed with error. (refer CPMS screenshot)
- Now click on "Metadata download" button to download the SAML metadata. (refer CPMS screenshot)
- Open SAP BTP cockpit in new browser window and go to subaccount used for mobile service account. (refer BTPCockpit screenshot)
- Now go to Security->Trust Configuration and then click "New Trust Configuration" (refer BTPCockpit screenshot)
- Now upload the metadata downloaded previously and save it.
- Go back to mobile service cockpit and click on "Test" buttton. Trust test should be successful (refer CPMS screenshot)
- Now your app should work normally."
Other than that the server shows these errors:
Failed to request an OAuth2SAMLBearAssertion
access token when process Anonymous Authentication. Maybe the SAML metadata has
not been imported as a Trusted Identity provider into sub-account, please
verify the configuration. Category: IO Error, message: 401 Unauthorized: [no
body], details:
Get access token for
anonymous user failed:
{"name":"StatusCodeError","statusCode":500,"message":"500
- \"Generate Access Token with Saml Assertion failed: 401 Unauthorized:
[no body]\"","error":"Generate Access Token with Saml
Assertion failed: 401 Unauthorized: [no body]","options"...
KBA will be created soon. * UPDATE: 3052553 - API Key Only authentication fails with error: Error requesting an OAuth2SAMLBearAssertion access token while processing Anonymous Authentication.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.