search cancel

UIM 20.x - SSO stopped working: Error connecting to Identity Provider

book

Article ID: 216687

calendar_today

Updated On:

Products

DX Unified Infrastructure Management (Nimsoft / UIM)

Issue/Introduction

We are no longer able to log into UIM via SSO. 

SSO configuration hasn't changed. 

Users can login via Ldap in OC. However sso is not working.  (Error connecing to Identity Provider)

 

Generating the metadata for OC (https://nimsoftportal/samlsso/saml/metadata) fails with the message "Page Not Found - The requested page cannot be found"

Logs:

[[Catalina-utility-1] ERROR org.springframework.web.context.ContextLoader 02/02/2021 02:19:11 - Context initialization failed
org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'org.springframework.security.filterChains': Cannot resolve reference to bean 'org.springframework.security.web.DefaultSecurityFilterChain#5' while setting bean property 'sourceList' with key [5]; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'org.springframework.security.web.DefaultSecurityFilterChain#5': Cannot resolve reference to bean 'metadataGeneratorFilter' while setting constructor argument with key [0]; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'metadataGeneratorFilter' defined in ServletContext resource [/WEB-INF/securityContext.xml]: Cannot create inner bean 'org.springframework.security.saml.metadata.MetadataGenerator#69d4f6f8' of type [org.springframework.security.saml.metadata.MetadataGenerator] while setting constructor argument; nested exception is org.springframework.beans.factory.BeanCreationException:

Caused by: org.springframework.beans.factory.BeanExpressionException: Expression parsing failed; nested exception is java.lang.StringIndexOutOfBoundsException: String index out of range: 13
Caused by: org.springframework.beans.factory.BeanCreationException: Could not autowire method: public void org.springframework.security.saml.metadata.MetadataManager.setKeyManager(org.springframework.security.saml.key.KeyManager); nestedcd

Environment

Release : 20.3

Component : UIM - OPERATOR CONSOLE

Cause

Communication issue

Resolution

This issue can be caused by a communication problem between the OC and the Azure server. If OC server is not able to access Azure server URL this issue is seen. 

Make sure the Azure server is reachable from the OC server. 

Additional Information

Configure UMP to Use SAML Single Sign-On (broadcom.com)

Attachments