search cancel

SAML 2.0 integration doesn't work when using SSL offloading on LB in Clarity

book

Article ID: 216559

calendar_today

Updated On:

Products

Clarity PPM On Premise Clarity PPM SaaS

Issue/Introduction

SAML Authentication request redirects to an Authentication error URL when using SSL offloading for Clarity.

Error seen:

[http-nio2-8080-exec-30] filter.SAMLFilter (clarity:admin:-1:none) Error occurred while creating session for user  null Reason: Unauthenticated SAML response received:The response was received at http://server.ppm.com/niku/nu instead of https://server.ppm.com/niku/nu

Environment

Release : Clarity releases lower than 15.9.3

Cause

Defect DE61289

Resolution

Defect was resolved in clarity 15.9.3.

Workaround for the releases prior to clarity 15.9.3. 

  • Clarity SAML integration doesn't support the protocol switch that happens between the load balancer and Clarity Application server.
  • To avoid this issue, Clarity should be configured with End - to - End SSL encryption by enabling SSL for Clarity in the properties.xml