Announcement Announcement Module
No announcement yet.
Error decoding incoming SAML message Page Title Module
Move Remove Collapse
Conversation Detail Module
  • Filter
  • Time
  • Show
Clear All
new posts

  • Error decoding incoming SAML message


    I am trying to implement single sign on across three of my webapps using the spring SAML extension. But I am implementing the sample app given before implementing the SAML extension on my own apps. However I get this error in my browser after I sign in to the sample app:

    HTTP Status 401 - Authentication Failed: Error decoding incoming SAML message

    type Status report

    message Authentication Failed: Error decoding incoming SAML message

    description This request requires HTTP authentication.

    Apache Tomcat/7.0.41

    and the tomcat log says:

    INFO: Server startup in 7861 ms
    - No default metadata configured, generating with default values, please pre-con figure metadata for production use
    - Created default metadata for system with entityID: https://localhost:8443/spri ng-security-saml2-sample/saml/metadata/alias/defaultAlias
    - AuthNRequest;SUCCESS;
    - PKIX path construction failed for untrusted credential: [subjectName='CN=servername.local' |credential entityID='http://servername.local/adfs/services/trust']: unable to find valid certification path to requested target

    I am using this guide to implement single sign on:

    with this sample application

    Using an ADFS Windows 2012 server standard

  • #2

    System is likely using Artifact binding and doesn't include SSL/TLS certificate of your server. You can download the certificate e.g. using the SSL extractor tool and then include it in your keystore using instructions found in the manual (chapter 4.5).