EDR: sso.conf.example.shib not in Valid JSON Format
search cancel

EDR: sso.conf.example.shib not in Valid JSON Format

book

Article ID: 287901

calendar_today

Updated On:

Products

Carbon Black EDR (formerly Cb Response)

Issue/Introduction

sso.conf.example.shib not in valid JSON format. When running the /usr/share/cb/cbssl sso --make-metadata command, this error is displayed
  
sequence item 3: expected str instance, NoneType found
Traceback (most recent call last):
File "/usr/share/cb/virtualenv/lib/python3.8/site-packages/cb/utils/exceptions.py", line 84, in decorator
File "/usr/share/cb/virtualenv/lib/python3.8/site-packages/cb/maintenance/cbssl/main.py", line 62, in main
File "/usr/share/cb/virtualenv/lib/python3.8/site-packages/cb/utils/cli_cmd.py", line 35, in run_command
File "/usr/share/cb/virtualenv/lib/python3.8/site-packages/cb/maintenance/cbssl/commands/sso/cmd_main.py", line 54, in execute
File "/usr/share/cb/virtualenv/lib/python3.8/site-packages/cb/maintenance/cbssl/commands/sso/cmd_main.py", line 75, in _make_metadata
File "/usr/share/cb/virtualenv/lib64/python3.8/site-packages/saml2/metadata.py", line 820, in sign_entity_descriptor
xmldoc = secc.sign_statement("%s" % edesc, class_name(edesc))
File "/usr/share/cb/virtualenv/lib64/python3.8/site-packages/saml2/sigver.py", line 1676, in sign_statement
return self.crypto.sign_statement(
File "/usr/share/cb/virtualenv/lib64/python3.8/site-packages/saml2/sigver.py", line 841, in sign_statement
(stdout, stderr, signed_statement) = self._run_xmlsec(
File "/usr/share/cb/virtualenv/lib64/python3.8/site-packages/saml2/sigver.py", line 910, in _run_xmlsec
logger.debug('xmlsec command: %s', ' '.join(com_list))
TypeError: sequence item 3: expected str instance, NoneType found

Environment

  • EDR Server: All Versions

Cause

Extra curly brackets

Resolution

Edit the /etc/cb/sso/sso.conf.example.shib file, removing the following lines 
"endpoints": {
          "assertion_consumer_service": {
              "https://<IP Address>/api/saml/assertion":
              "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
          } <<<< REMOVE THIS LINE
          },
          "single_logout_service": {
          { <<<< REMOVE THIS LINE
              "https://<IP Address>/api/saml/logout":
              "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
            } <<<< REMOVE THIS LINE
          }
        },

Additional Information

Update request: CB-12969
Powered by Wolken Software