IDP Configuration SAM

0
Hi Expert, I am trying to configure IDP based on IDP recieved from the client and I am getting error like ‘Unable to validate the SAML message!’ When I rechecked the documentation and tries to re-configure . It seems below information is not  populating as shown in screenshot. Do you think there is a issue where values are not populating in the drop-down.   Initially, this LOV was blank, we communicated with Client and we created this field by clicking ‘search’→ ‘Create’ from above screen. they are using this filed t their side.    After hitting /SSO/ url, it redirects to below page     We are getting error like - Issuer mismatch with the new metadata configuration.   I am not able to attach SP metadata and IDP metadata with you.      
asked
4 answers
1

Hi Amol,

 

If you check your federation metadata file you can also use the uri in Custom to achieve the same effect.

F.e. : http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name for a name or http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress for email.

answered
0

It depends a lot on the IdP which option you need to choose here. You could deduct it from the response. You might try Use Name ID to see if that works. But again this depends a lot on what is provided in the SAML response.

Regards,

Ronald

 

answered
0

Hi Amol, 

Can you pls add screenshot 

answered
0

Hi Amol, 

First check Allow IDP Initiated authentication

Also add authentication classes in your configuration

answered