Expand my Community achievements bar.

Dive into Adobe Summit 2024! Explore curated list of AEM sessions & labs, register, connect with experts, ask questions, engage, and share insights. Don't miss the excitement.

aem saml2.0 Anonymous access not allowed by configuration - requesting credentials

Avatar

Level 3

15.12.2022 14:55:56.039 *INFO* [qtp2102147594-25673] org.apache.sling.auth.core.impl.SlingAuthenticator getAnonymousResolver: Anonymous access not allowed by configuration - requesting credentials
15.12.2022 14:55:56.049 *WARN* [qtp2102147594-25673] org.apache.sling.auth.core.AuthUtil isRedirectValid: Redirect target must not be empty or null

 

How can I fix it? I have changed Sling refer. When I want to login my system, it redirect to the IDP login page. However, the status code is 500, I new to SAML2.0, it confused me several days. Who can help me to fix it?

 
4 Replies

Avatar

Community Advisor

Please check the below post for the solution

https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/com-adobe-granite-auth-sam...

 

Apache Sling Referrer Filter:

Enable referrer filter to allow B2C tenant URL

{
"allow.hosts":[
"https://login.microsoftonline.com:443"
]
}

CORS Policy:

Enable the CORS policy to allow Cross-Origin POST Request from B2C tenants.

{
"alloworigin":[
"https://login.microsoftonline.com"
]
}

 

if it doesnt' fix the issue, please enable the saml.log and see what is the issue

 

  •  

    Create a logger with the following configuration:
    • Log Level: Debug
    • Log File: logs/saml.log
    • Logger: com.adobe.granite.auth.saml

Avatar

Community Advisor

Did you try enabling the saml.log and see more information about the error? if yes, please post it here.