Level 4

aem saml2.0 Anonymous access not allowed by configuration - requesting credentials

Forum|Forum|3 years ago
December 15, 2022
1 reply
1313 views

15.12.2022 14:55:56.039 *INFO* [qtp2102147594-25673] org.apache.sling.auth.core.impl.SlingAuthenticator getAnonymousResolver: Anonymous access not allowed by configuration - requesting credentials
15.12.2022 14:55:56.049 *WARN* [qtp2102147594-25673] org.apache.sling.auth.core.AuthUtil isRedirectValid: Redirect target must not be empty or null

How can I fix it? I have changed Sling refer. When I want to login my system, it redirect to the IDP login page. However, the status code is 500, I new to SAML2.0, it confused me several days. Who can help me to fix it?

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.

Saravanan_Dharmaraj

Community Advisor

Please check the below post for the solution

https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/com-adobe-granite-auth-saml-samlauthenticationhandler-saml-error/td-p/325015

Apache Sling Referrer Filter:

Enable referrer filter to allow B2C tenant URL

{
"allow.hosts":[
"https://login.microsoftonline.com:443"
]
}

CORS Policy:

Enable the CORS policy to allow Cross-Origin POST Request from B2C tenants.

{
"alloworigin":[
"https://login.microsoftonline.com"
]
}

if it doesnt' fix the issue, please enable the saml.log and see what is the issue

Going to the Web Console, at http://localhost:4502/system/console/configMgr

Search for and click on the entry called Apache Sling Logging Logger Configuration