Authnrequest - POST Binding

search cancel

Authnrequest - POST Binding - 400 Error

book

Article ID: 203257

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On Federation (SiteMinder) SITEMINDER

Issue/Introduction

When running SiteMinder as IdP and this one is receiving an authnrequest (SAMLRequest) via POST binding.

The request is failing with the following errors logged in the FWSTrace.log:

[10/30/2020][10:05:01][19164][44144][][SSO.java][doGet][No SAMLRequest or SPID parameter in request to SAML2 Single Sign-On Service]
[10/30/2020][10:05:01][19164][44144][][SSO.java][doGet][Ending SAML2 Single Sign-On Service request processing with HTTP error 400]

Cause

The SAMLRequest was not properly encoded and could not be decoded using third-party tools (1).

Resolution

Ask the SP to correct the encoding.

If third-party decoders cannot decode the SAMLRequest, neither will SiteMinder be able to.

Additional Information

SAML Request Online Decoder / Encoder

Feedback

thumb_up Yes

thumb_down No