Skip to Content

SAML SSO on to CE 7.11 fails

Hi all,

I am using a BEA Weglogic Portal to call a webpage running on CE 7.11, using SAML Artifacts to do SSO on to CE. However it is failing.

The point at which it is failing is:

Return values of HttpGetterCallback(): REQUEST_PARAMETER(SAMLart) = '<null>', IS_SECURE = 'false', SESSION_ATTRIBUTE(SAMLLoginModuleDataBuffer) = '<null>'. This is in the SAML Login module.

The trace file is:

Entering method with (APID=GSP&SAMLart=AAFcjp3yBTYKn2J62j3tgr1ZGCZqZGqcLOxsnkRDk%2BtD%2FV3o9rlZzXNR&TARGET=http://gbdertsapp1:50000/eso/fsvendor/vendordesktop/index)

Entering method with (AAFcjp3yBTYKn2J62j3tgr1ZGCZqZGqcLOxsnkRDk+tD/V3o9rlZzXNR, false)

The access to 'Artifact Receiver' should use a secure connection, but was done using an insecure connection. This is currently possible because configuration setting 'PermitInsecureConnections'is set to 'true'.

Entering method with (5C8E9DF205360A9F627ADA3DED82BD5918266A64)

Exiting method with com.sap.security.core.server.saml.service.configuration.SAMLPartnerInbound[GSP]

Exiting method with TARGET

sendRedirect(http://CEServer:50000/eso/fsvendor/vendordesktop/index?SAMLart=AAFcjp3yBTYKn2J62j3tgr1ZGCZqZGqcLOxsnkRDk%2BtD%2FV3o9rlZzXNR)

Exiting method

Entering method

Option 'Mode' has value 'Standalone'

Return values of HttpGetterCallback(): REQUEST_PARAMETER(SAMLart) = '<null>', IS_SECURE = 'false', SESSION_ATTRIBUTE(SAMLLoginModuleDataBuffer) = '<null>'

No artifacts found. Exiting with 'false'.

Exiting method

Any ideas?

Thanks

Paul

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer

  • Jan 04, 2012 at 05:21 PM

    Just an update on this. We were trying to do SAML SSO on to SAP Sourcing, which sits on top of CE. This was failing but when we did it to the SAML test destination on CE it worked fine. After raising a message with SAP they stated that their documentation is wrong (SAP Sourcing does not support SAML, even though it uses UME for authentication!).

    Paul

    Add comment
    10|10000 characters needed characters exceeded

    • Former Member

      Well certainly that attracts attention to how it uses UME to authenticate, as it is the web application server which is SAML certified and not the application itself.

      Is there anything odd running over the gateway logs?

      Cheers,

      Julius