Description:

I am working on SP side, and each time we receive a SAML 1.1 Artifact
Assertion, we can see in the logs that message:

• [11/03/2010][13:41:40][16996][][SmAuthSaml.cpp:1193][SmAuthenticate][][][][][][][][lpArray[1]=No expected subject confirmation methods found][4076][13:41:40.986]
  
  
• [11/03/2010][13:41:40][16996][][SmAuthSaml.cpp:1187][SmAuthenticate][][][][][][][][Executed JNI authenticate to obtain disambig/DN data]
  
  
• [11/03/2010][13:41:40][16996][][SmAuthSaml.cpp:1903][SmAuthenticate][][][][][][][][SAML Auth Scheme returning auth state: 3, auth reason: 50.][4076][13:41:40.986][][]

Why is the user not authenticated?

Solution:

You need to create a SAML Assertion with an attribute statement in subject that contains a

     <SubjectConfirmation>   
       <ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:bearer   
      </ConfirmationMethod>   
     </SubjectConfirmation>  

Reason why you get return code 50 (Sm_Api_Reason_FederationUnacceptedMessage) is that the Assertion cannot be consumed and thus, the user not to be authenticated and receive error 500 in browser.