403 Forbidden logging into CloudSOC via SSO

search cancel

403 Forbidden logging into CloudSOC via SSO

book

Article ID: 218949

calendar_today

Updated On:

Products

CASB Audit CASB Advanced Threat Protection CASB Gateway CASB Gateway Advanced CASB Security Advanced CASB Security Advanced IAAS CASB Security Premium CASB Security Premium IAAS CASB Security Standard CASB Securlet IAAS CASB Securlet SAAS CASB Securlet SAAS With DLP-CDS

Issue/Introduction

When logging into https://app.elastica.net or http://app.eu.elastica.net using SSO, the browser returns error: 403 Forbidden

Environment

SSO setup using ADFS as the IDP

Resolution

Verify that the redirect URIs in IDP have an ending forward slash, "/"

This screenshot shows the ending forward slash missing from https://app.eu.elastica.net which was causing the issue

Additional Information

SSO Documentation is at this link:

https://techdocs.broadcom.com/content/dam/broadcom/techdocs/symantec-security-software/information-security/symantec-cloudsoc/generated-pdfs/9-Configuring-ADFS-Single-Sign-On.pdf

Configuring Active Directory Federation Services (AD FS) as an IdP

Please be also advised that as per Symantec CloudSOC 3.157 Release Notes CASB in a future CloudSOC release, customers will be migrated to authenticate to CloudSOC exclusively with the Broadcom Login and will be SAML SSO configuration will be depreciated.

Please subscribe to Symantec Products' Notifications for future updates

Feedback

thumb_up Yes

thumb_down No