Expand my Community achievements bar.

Azure SSO SAML error loop after logging-in

Avatar

Level 2

Hello, I'm trying to connect AEM to Azure SSO and encountered refresh loop after logging in. I checked the error.log and having this error message

"18.08.2023 09:27:00.419 *INFO* [qtp535352936-30933] org.apache.sling.auth.core.impl.SlingAuthenticator getAnonymousResolver: Anonymous access not allowed by configuration - requesting credentials
18.08.2023 09:27:00.424 *WARN* [qtp535352936-30933] org.apache.sling.auth.core.AuthUtil isRedirectValid: Redirect target must not be empty or null"

 

Any idea for this error?

Thank you!

3 Replies

Avatar

Community Advisor

hi @AEMStarterNewbie 

Did you get a chance to look at a similar post, there also the same messages are seen and also one way to resolve is given 

 

Refer: https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/com-adobe-granite-auth-sam...

 

Yes I was able to solve it with CORS and Referrer filter configurations as below. You also need to enable ssl on aem instance.


Apache Sling Referrer Filter:

Enable referrer filter to allow B2C tenant URL

{
"allow.hosts":[
"https://login.microsoftonline.com:443"
]
}

CORS Policy:

Enable the CORS policy to allow Cross-Origin POST Request from B2C tenants.

{
"alloworigin":[
"https://login.microsoftonline.com"
]
}

 

Avatar

Community Advisor

hi @AEMStarterNewbie 

Please use the below url to get started with the same 

https://experienceleague.adobe.com/docs/experience-manager-learn/foundation/security/use-the-ssl-wiz...

 

Are you trying to test the azure integration with any of you integration environments. Mostly in case of integration environments SSL will be enabled with the help of valid certificates.