Expand my Community achievements bar.

Don’t miss the AEM Skill Exchange in SF on Nov 14—hear from industry leaders, learn best practices, and enhance your AEM strategy with practical tips.
Read More & Register today!
SOLVED

saml integration problems (6.3)

Avatar

Level 1
Level 1
3/22/18 2:07:33 PM

Hi ,

As per ADOBE SAML INTEGRATION documentation  I have configured

1) AEM trust store with IDP certificate given by idp admin

2) Configure AEM KeyStore with private certificate from service provider (AEM)

3) Configured referrer filter

4) Configure SAML 2.0 Authentication Handler

5)Configure logging for SSO (saml.log)

whenever we are trying to access the IDP url it says the PAGE IS EXPIRED .

SAML.LOG :- 

com.adobe.granite.auth.saml.util.SamlReader Document is invalid: no grammar found.
com.adobe.granite.auth.saml.util.SamlReader Document root element "samlp:Response", must match DOCTYPE root "null".

INFO:-  both of our IDP and AEM servers are in the same timezone , we are accessing the instance from dispatcher to publish .

 

Thanks  in advance

Venkata sai kiran .

Views

1.6K

Replies

3
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Employee
Employee
3/22/18 2:29:17 PM

You can ignore this message you mentioned as this was a minor issue with the SAX parser but can be ignored for now. The issue is somewhere else either in config on AEM end or IDP end that would need some debugging

Can you setup debug logs for SAML, Capture HAR Trace with complete cycle of requests and send me  the information for review. I can tell what you need to rectify.

View solution in original post

Views

946

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
3 Replies

Avatar

Correct answer by
Employee
Employee
3/22/18 2:29:17 PM

You can ignore this message you mentioned as this was a minor issue with the SAX parser but can be ignored for now. The issue is somewhere else either in config on AEM end or IDP end that would need some debugging

Can you setup debug logs for SAML, Capture HAR Trace with complete cycle of requests and send me  the information for review. I can tell what you need to rectify.

Views

947

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply

Avatar

Level 1
Level 1
3/27/18 3:53:37 PM

Thanks for the response Kunwar , yes we figured out that was a issue from AEM side (SAX parser ) .

So whenever we hitting our URL it was going to IDP for authentication and next when it redirects into AEM when haven't  had any SAMPLE page or LOGIN page  to view that is the reason we weren't able to see  the page .

Views

851

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 1
Level 1
3/27/18 4:01:53 PM

INFO :-

whenever you  configure SAML in your setup make sure that you have login page or content for display, when the authentication is done form the IDP SIDE.

Views

881

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
Asking for some help with integrating Workfront with Experience Fragments(XF)

Views

64

Likes

0

Replies

1
Error while migrating from AEM 6.3 to 6.5

Views

141

Like

1

Replies

2
Not able to login on publisher after in-place upgrade from AEM 6.3 to 6.5

Views

220

Likes

0

Replies

5
Application Architecture - API Integration, AEM, VueJS, KendoUI

Views

199

Likes

0

Replies

6
Integrating DynamoDB with AEM 6.5 SPA

Views

224

Likes

0

Replies

5