SAML configuration not working
search cancel

SAML configuration not working

book

Article ID: 258900

calendar_today

Updated On: 06-05-2023

Products

Clarity PPM On Premise Clarity PPM SaaS

Issue/Introduction

As part of the SAML configuration,  we have imported metadata from IDP and afterward provided Clarity metadata, but we are still getting following error 

"Error occurred authenticating with SAMLFilter
java.lang.RuntimeException: Unauthenticated SAML response received:Signature validation failed. SAML Response rejected"

Environment

Release : 16.0.3

Resolution

This appears due to a mismatch of the SSO certificate imported into clarity, this happens in Azure or similar IDPs when there are multiple certificates in the metadata. Once you confirm the right certificate then you would need to manually update the same on the clarity certs section of the SAML configuration in new UI.

  • Firstly you can validate certificate value stored in the SAML confguration section in new UI DB , i.e. select cert_value from CMN_SEC_CERTS;
  • Then compare this with the certificate from the IDP metadata file will be the one under tag <KeyDescriptor use="signing">