search cancel

Rally: SSO OKTA 500 Internal server Error (Siteminder)

book

Article ID: 215200

calendar_today

Updated On:

Products

CA Agile Central SaaS (Rally)

Issue/Introduction

We have a user who has to clear his Chrome browser cache every day in order to be able to login to Rally.  He logs in successfully and then gets logged out almost immediately and is brought to the "Choose a New Password" page.  He clears his cache and then is able to SSO back in. 

The user is also not able to login when tried to access direct SSO link : (https://login.broadcom.com/sso/saml2/0oa1h8kl499IWXCaa1d8?fromURI=/app/broadcomincexternal_rally_1/exk1gdbaindeR1Jrj1d8/sso/saml the error is 500 internal server error.

Cause

The issue happens to occur in SiteMinder IDP connections, due to a missing SP certificate in configuration.


Environment

Release : 2018

Component : API FOR AGILE CENTRAL

Resolution

When any user tries to access Rally using the configured ACS URL the user should be logged into Rally directly, if users are receiving 500* error issues then the issue is with the IDP connection.

Please update the Rally OKTA Certificate provided during the connection build, it is available in the XML metadata file, extract the certificate and update them manually into your SiteMinder.

The issue will be fixed.


Additional Information


If the issue still persists, please log a case at the Broadcom support portal, a Rally engineer can help you with the SSO transition.