Your achievements

Level 1

0% to

Level 2

Tip /
Sign in

Sign in to Community

to gain points, level up, and earn exciting badges like the new
Bedrock Mission!

Learn more

View all

Sign in to view all badges

aem saml2.0 Anonymous access not allowed by configuration - requesting credentials

Avatar

Level 2

15.12.2022 14:55:56.039 *INFO* [qtp2102147594-25673] org.apache.sling.auth.core.impl.SlingAuthenticator getAnonymousResolver: Anonymous access not allowed by configuration - requesting credentials
15.12.2022 14:55:56.049 *WARN* [qtp2102147594-25673] org.apache.sling.auth.core.AuthUtil isRedirectValid: Redirect target must not be empty or null

 

How can I fix it? I have changed Sling refer. When I want to login my system, it redirect to the IDP login page. However, the status code is 500, I new to SAML2.0, it confused me several days. Who can help me to fix it?

 
4 Replies

Avatar

Level 8

Please check the below post for the solution

https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/com-adobe-granite-auth-sam...

 

Apache Sling Referrer Filter:

Enable referrer filter to allow B2C tenant URL

{
"allow.hosts":[
"https://login.microsoftonline.com:443"
]
}

CORS Policy:

Enable the CORS policy to allow Cross-Origin POST Request from B2C tenants.

{
"alloworigin":[
"https://login.microsoftonline.com"
]
}

 

if it doesnt' fix the issue, please enable the saml.log and see what is the issue

 

  •  

    Create a logger with the following configuration:
    • Log Level: Debug
    • Log File: logs/saml.log
    • Logger: com.adobe.granite.auth.saml

Avatar

Level 8

Did you try enabling the saml.log and see more information about the error? if yes, please post it here.