single sign on - SAML 2 Signature error in ADFS 2.0 -

-

in our sso scenario, using adfs 2.0 idp , shibboleth sp. sp-initiated sign-on. after configuring, when try establish communication between shibboleth , adfs 2.0(throw browser redirect), adfs 2.0 throwing below error.

the verification of saml message signature failed. message issuer: http://sampleserver/adfs/services/trust exception details: msis1015: server required signed saml authenticationrequest no signature present.

event id - 320 related event id - 364

> microsoft.identityserver.service.samlprotocol.samlprotocolsignatureverificationexception: > msis1015: server required signed saml authenticationrequest no > signature present.    @ > microsoft.identityserver.service.samlprotocol.samlprotocolservice.validatesignaturerequirements(samlmessage > samlmessage)    @ > microsoft.identityserver.service.samlprotocol.samlprotocolservice.issue(issuerequest > issuerequest)    @ > microsoft.identityserver.service.samlprotocol.samlprotocolservice.processrequest(message > requestmessage)

we haven't used signature yet. have made signedsamlrequest false in adfs properties. signing of saml @ shibboleth disabled.

i not find information in microsoft site - apart generic guide sort of errors.

please advice on error.

i able find solution after lot analysis. shibboleth configuration issue. in application defaults section, entity id should unique application.

applicationdefaults signing="false" entityid="http://url of protected application " remote_user="eppn persistent-id targeted-id"

another variation of error happens when sigining set true. result in signature mismatch error in adfs.


Comments

Post a Comment

Popular posts from this blog

java - Run spring boot application error: Cannot instantiate interface org.springframework.context.ApplicationListener -

-
i have spring project , try make use spring boot , run @ embadded tomcat following : https://spring.io/guides/gs/rest-service/ this application //@configuration //@enableaspectjautoproxy @springbootapplication @componentscan(basepackages = "gux.prome") public class application { public static void main(string[] args) { springapplication.run(application.class, args); } } if use maven command: mvn spring-boot:run , project starts fine, need debug , run main method @ intelij, exception occurs: exception in thread "main" java.lang.illegalargumentexception: cannot instantiate interface org.springframework.context.applicationlistener : org.springframework.boot.logging.classpathloggingapplicationlistener @ org.springframework.boot.springapplication.createspringfactoriesinstances(springapplication.java:414) @ org.springframework.boot.springapplication.getspringfactoriesinstances(springapplication.java:394) @ org.springframework.bo...
Read more

reactjs - React router and this.props.children - how to pass state to this.props.children -

-
i'm using react-router first time , don't know how think in yet. here's how i'm loading components in nested routes. entry point .js reactdom.render( <router history={hashhistory} > <route path="/" component={app}> <route path="models" component={content}> </route> </router>, document.getelementbyid('app') ); app.js render: function() { return ( <div> <header /> {this.props.children} </div> ); } so child of app content component sent in. i'm using flux , app.js has state , listens changes, don't know how pass state down this.props.children. before using react-router app.js defines children explicitly, passing state natural don't see how now. using couple of react helper methods can add state, props , whatever else this.props.children render: function() { var children = react.ch...
Read more

Excel VBA "Microsoft Windows Common Controls 6.0 (SP6)" Location Changes -

-
i have excel workbook used generate quotations customers. there main page user inputs data, , there buttons generate various pdfs , send them customer. however, 1 user consistently getting error preventing generating , sending pdfs. i beleive "microsoft windows common controls 6.0 (sp6)". it's installed on users' computers. on mine, location "c:\windows\syswow64\mscomctl.ocx" on others "c:\windows\system32\mscomctl.ocx" the user experiencing issues on 32-bit machine, "mscomctl.ocx" file should in system32. have manually put in there, , pointed common controls reference in vba it. issue seems keep reverting looking in syswow64. since folder doesn't exist, can't find it, , can't produce pdfs. i thought perhaps issue user running older version of office (2007) there users on 2013 , 2016. thought perhaps mixture of 64-bit , 32-bit users. user gets sent workbook other users (as quotation process goes further, gets passed ...
Read more