After upgrading to version 24․4․2 hf3, users cannot log in to the Automic Web Interface (AWI) using SAML SSO because the browser loops back to the credential page without displaying an error message․​​​​​‌​

SYMPTOMS:

• Local authentication (non-SSO) works normally․

• SAML redirection occurs, but the session lands back on the AWI login page․

Automic Automation Engine Version: 24․4․2 hf3

Component: Automic Web Interface (AWI)

Authentication: SAML SSO

Database: Oracle 

The v24 upgrade introduces stricter requirements for SAML metadata matching, specifically regarding trailing slashes in EntityIDs and the presence of specific library files for token processing․

First, add any missing libraries: Ensure all of the required JAR files (as described here: Setting up Single Sign-On - SAML) are present in the Automation Engine/bin/lib folder.

Next, configure trailing slashes in UC_SAML_SETTINGS -> key: *SP. This key has several attributes where the forward slash must be specified (as documented here: UC_SAML_SETTINGS - Single Sign-On), including:

• entityID
• Location attribute for the HTTP-POST binding
• Location attribute for the HTTP-Artifact binding

Example: https://[AWI_URL]/awi/

Last, make sure your idP is configured correctly - using the same trailing slash in it's appropriate attributes (ex: Single Sign On URL, Audience URL, etc..).