Question

Unable to configure SAM authentication for application deployed on licensed node

0

Application is deployed on licensed node. The application is registered for SAM authentication. The setup is done using the client id and client secret. This application is working on local as well as sandbox using the same client id and client secret. Based on our findings the cause might be the APIs might not be up and running hence we see “Connection refused” error while accessing “/signin/siemens” API. Snippet of the logs: 1:02:20 PMREQINFOpfms-accp.mx.lowcode.siemens.cloud - [2022-08-10T07:32:20.865614161Z] "GET /favicon.ico HTTP/1.1" 304 0 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36" "10.10.11.27:64420" "10.10.136.31:61232" x_forwarded_for:"121.241.69.235, 10.10.11.61, 10.10.11.27" x_forwarded_proto:"https" vcap_request_id:"da3d62a7-6865-45bd-65af-0999c6336e20" response_time:0.002143 gorouter_time:0.000101 app_id:"36360491-ef55-4124-8329-a9a16ef0398d" app_index:"0" instance_id:"00fb414d-cf61-4829-52c0-6585" x_cf_routererror:"-" x_b3_traceid:"34e3402df1fd7ad541152409162d2124" x_b3_spanid:"41152409162d2124" x_b3_parentspanid:"-" b3:"34e3402df1fd7ad541152409162d2124-41152409162d2124" 1:02:21 PMAPPERRORConnector: com.mendix.systemwideinterfaces.MendixRuntimeException: java.net.ConnectException: Connection refused (Connection refused) 1:02:21 PMAPPINFOat com.mendix.util.classloading.Runner$.withContextClassLoader(Runner.scala:23) 1:02:21 PMREQINFOpfms-accp.mx.lowcode.siemens.cloud - [2022-08-10T07:32:20.864918751Z] "GET /signin/siemens HTTP/1.1" 560 0 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36" "10.10.11.39:18628" "10.10.136.31:61232" x_forwarded_for:"121.241.69.235, 10.10.11.61, 10.10.11.39" x_forwarded_proto:"https" vcap_request_id:"b28c10e4-88f1-4f5a-7b4c-30971db89fa6" response_time:1.010382 gorouter_time:0.000101 app_id:"36360491-ef55-4124-8329-a9a16ef0398d" app_index:"0" instance_id:"00fb414d-cf61-4829-52c0-6585" x_cf_routererror:"-" x_b3_traceid:"5f997f97f4ddbf097e561111ce6fe027" x_b3_spanid:"7e561111ce6fe027" x_b3_parentspanid:"-" b3:"5f997f97f4ddbf097e561111ce6fe027-7e561111ce6fe027" 1:02:21 PMAPPINFOCaused by: java.net.ConnectException: Connection refused (Connection refused) On accessing the link below error is observed –

asked 2022-08-08

Swarali Borikar

1 answers

Ronald Catersels · Answer 1 · 2022-08-08

Do note that SAML aliases can not contain a space. Try replacing the space with an underscore.

Regards,

Ronald

[EDIT]

Hmm, I misread the error it seems. In Firefox you have the plugin SAML tracer. You can then check the traffic to the server. A connection refused means that your request is not accepted by the IdP. Most of the time that means you are sending your request to the wrong location. Double check the endpoints from the SAML metadata. With SAML tracer you can then easily check if you indeed send the message to the endpoints as stated in the metadata.