SAML 2 SSO profile is not configured for relying party https://<IP_or_FQDN>

book

Article ID: 6849

calendar_today

Updated On:

Products

CA Privileged Access Manager - Cloakware Password Authority (PA) PAM SAFENET LUNA HSM CA Privileged Access Manager (PAM)

Issue/Introduction

User is redirected to an error page with the error message: "SAML 2 SSO profile is not configured for relying party https://<IP_or_FQDN>" when user attempts to access CA Threat Analytics Engine from CA PAM:

<Please see attached file for image>

Environment

Release: PAMDKT99500-2.7-Privileged Access Manager-NSX API PROXY
Component:

Resolution

The Threat Analytics Address defined in CA PAM: Config >> CA Modules is automatically reflected in the TCP/UDP Services named ‘TAP-SAML-Service’ as SAML Entity ID. Ensure that the value matches the FQDN/ IP associated to the Assertion Consumer Service URL in CA Threat Analytics Administrative Application: Security.

 

Note: Any changes made to security settings in CA Threat Analytics Administrative Application requires restart of the Threat Analytics Engine.

 

<Please see attached file for image>

style="font-size: 14px;" src="https://communities.ca.com/servlet/JiveServlet/showImage/38-6161-124488/pastedImage_27.png" alt="">

<Please see attached file for image>

src="https://communities.ca.com/servlet/JiveServlet/showImage/38-6161-124489/pastedImage_28.png" alt="">

<Please see attached file for image>

src="https://communities.ca.com/servlet/JiveServlet/showImage/38-6161-124490/pastedImage_29.png" alt="">

Additional Information

https://communities.ca.com/community/ca-security/ca-privileged-access-management/blog/2017/04/21/tech-tip-ca-privileged-access-manager-setup-ca-threat-analytics-server-with-ca-pam

Attachments

1558714851656000006849_sktwi1f5rjvs16tkx.png get_app
1558714849680000006849_sktwi1f5rjvs16tkw.png get_app
1558714847881000006849_sktwi1f5rjvs16tkv.png get_app
1558714845857000006849_sktwi1f5rjvs16tku.png get_app