since ‎12-04-2016
‎10-12-2019
amitmsharma
Employee
Re: [EVENT] 2nd Adobe Analytics Community Meetup - Noida, India
Avatar

amitmsharma

Employee

amitmsharma
- Adobe Analytics
Excited to be part of this community event and learn new stuff that people are upto adobeanalytics​-About Me: https://www.linkedin.com/in/akmsharma/

Views

8.1K

Like

1

Replies

1
Re: SAML com.adobe.granite.keystore.KeyStoreNotInitialisedException: Uninitialised system trust store.
Avatar

amitmsharma

Employee

amitmsharma
- Adobe Experience Manager
Please follow below tutorial to set additional configuration for 6.1:http://www.aemstuff.com/blogs/july/saml.htmlAfter making these changes this should work.

Views

898

Likes

0

Replies

0
Re: SAML AEM infinite loop
Avatar

amitmsharma

Employee

amitmsharma
- Adobe Experience Manager
Thanks Sham, I was able to fix this issue with modification to redirect URI and nameId attribute as you suggested.

Views

646

Likes

0

Replies

0
Re: SAML AEM infinite loop
Avatar

amitmsharma

Employee

amitmsharma
- Adobe Experience Manager
Elaborated error logs: 08.04.2015 16:23:57.373 *INFO* [127.0.0.1 [1428506637373] GET /content/gss-portal/en/na HTTP/1.1] org.apache.sling.engine.impl.SlingRequestProcessorImpl service: Resource /content/gss-portal/en/na not found 08.04.2015 16:24:04.594 *ERROR* [qtp1468301140-517] org.apache.sling.auth.core.impl.SlingAuthenticator doLogin: Cannot login: Response already committed 08.04.2015 16:24:05.531 *INFO* [127.0.0.1 [1428506645531] GET /etc/designs/gss-portal/provisioning-portal.css HTTP/1....

Views

646

Likes

0

Replies

0
Re: SAML AEM infinite loop
Avatar

amitmsharma

Employee

amitmsharma
- Adobe Experience Manager
Hi Sham, Please find attached SAMLResponse & config, there are no logs in SAML, but I have error in error.log as shared above.copying same for reference again08.04.2015 10:48:13.902 *INFO* [qtp1468301140-454] org.apache.sling.auth.core.impl.SlingAuthenticator getAnonymousResolver: Anonymous access not allowed by configuration - requesting credentials08.04.2015 10:48:13.949 *ERROR* [qtp1468301140-454] org.apache.sling.auth.core.impl.SlingAuthenticator doLogin: Cannot login: Response already commi...

Views

649

Likes

0

Replies

0
Re: SAML AEM infinite loop
Avatar

amitmsharma

Employee

amitmsharma
- Adobe Experience Manager
@bslokiThanks for quick revert. I have followed the link mentioned and saml logs are proper.

Views

648

Likes

0

Replies

0
SAML AEM infinite loop
Avatar

amitmsharma

Employee

amitmsharma
- Adobe Experience Manager
Hi,While configuring SAML on AEM I am getting below error in error.log. SAML logs are proper and do not have any error. 08.04.2015 10:48:13.902 *INFO* [qtp1468301140-454] org.apache.sling.auth.core.impl.SlingAuthenticator getAnonymousResolver: Anonymous access not allowed by configuration - requesting credentials08.04.2015 10:48:13.949 *ERROR* [qtp1468301140-454] org.apache.sling.auth.core.impl.SlingAuthenticator doLogin: Cannot login: Response already committedAny help.\Amit

Views

1.9K

Likes

0

Replies

9
Re: SAML com.adobe.granite.keystore.KeyStoreNotInitialisedException: Uninitialised system trust store.
Avatar

amitmsharma

Employee

amitmsharma
- Adobe Experience Manager
I followed steps mentioned at below link and the error is changed from Uninitialised system trust store to Could not read IdP certificate from truststore https://helpx.adobe.com/aem-forms/6/configuring-document-services.html#Enabling%20AES-256%20for%20Encryption%20ServiceI have received a meta file from IDP containing der certificate and some other settings. so don't really know which certificate to add and where. Any help ??saml logs list here: 02.04.2015 14:11:25.006 *ERROR* [qtp1468301140-399...

Views

902

Likes

0

Replies

0
Re: SAML com.adobe.granite.keystore.KeyStoreNotInitialisedException: Uninitialised system trust store.
Avatar

amitmsharma

Employee

amitmsharma
- Adobe Experience Manager
Yes @smacdonald2008. I did that and I have this working on AEM 5.6 and 6 with sp1 instance earlier but this issue is specific to AEM 6.1 that I am facing.

Views

900

Likes

0

Replies

0
Re: SAML com.adobe.granite.keystore.KeyStoreNotInitialisedException: Uninitialised system trust store.
Avatar

amitmsharma

Employee

amitmsharma
- Adobe Experience Manager
logs below02.04.2015 08:39:13.455 *WARN* [qtp1468301140-375] com.adobe.granite.auth.saml.SamlAuthenticationHandler Could not retrieve SP's private key: Uninitialised key store for user authentication-service02.04.2015 08:39:13.455 *WARN* [qtp1468301140-375] com.adobe.granite.auth.saml.SamlAuthenticationHandler Private key of SP not provided: Cannot sign Authn request.

Views

897

Likes

0

Replies

0
SAML com.adobe.granite.keystore.KeyStoreNotInitialisedException: Uninitialised system trust store.
Avatar

amitmsharma

Employee

amitmsharma
- Adobe Experience Manager
Hi,While configuring AEM 6.1 SAML packge I am receiving error once I get back to /saml_login consumptioncom.adobe.granite.keystore.KeyStoreNotInitialisedException: Uninitialised system trust store.As I see, there are some additional fields added to SAML configuration in AEM 6.1 compared to 5.6.If anyone can please share what need to be entered to these values and how to get values for same. like IDP Certificate Alias, SP Private Key Alias, Password of keystore and which of these values are manda...

Views

2.5K

Like

1

Replies

9
Re: AEM SAML integration, added users to CRX repo after authentication
Avatar

amitmsharma

Employee

amitmsharma
- Adobe Experience Manager
Hi Sham, I was working on SAML integration on AEM 6.1 and found that settings are bit different from what I have done in AEM 5.6 version. I have to add keys to authentication-services user to keystore and truststore, I have created one query for same at this link http://help-forums.adobe.com/content/adobeforums/en/experience-manager-forum/adobe-experience-manager.topic.3.html/forum__nvjo-hi_while_configu.htmlNow that I am done with changes and keys are detected properly, but I am getting signatu...

Views

466

Like

1

Replies

0
Re: AEM SAML integration, added users to CRX repo after authentication
Avatar

amitmsharma

Employee

amitmsharma
- Adobe Experience Manager
Thanks Sham, the url on IDP side contained the extension on removing that I was successfully able to consume the response and authenticate the url. Couple of more queries related to issues I am facing now, 1) Is it possible to add other properties from SAMLResponse apart from uid to crx users repo in AEM 5.6 ? I know this is possible with AEM 6 instance, but Are there any configration for same in AEM 5.6 instance? If yes, please share.2) In case of AEM instance URL conntaining get params after "...

Views

465

Likes

0

Replies

0
Re: AEM SAML integration, added users to CRX repo after authentication
Avatar

amitmsharma

Employee

amitmsharma
- Adobe Experience Manager
Sham HC wrote... You are almost there, 1) Do not create saml_login node. It is consumption point. 2) Just make sure the path in saml handler ( /content/adobedemolab/en) match with receipt/destination from idp with saml_login appended. i.e At idp configure as /content/adobedemolab/en/saml_login 3) Nameid format with saml response & configured in felix not matching. Believe me infinite loop & saml configuration is natorious problem & you can't get corrected with single go especially with first tim...

Views

475

Likes

0

Replies

1
AEM SAML integration, added users to CRX repo after authentication
Avatar

amitmsharma

Employee

amitmsharma
- Adobe Experience Manager
Hi, I am working on AEM 5.6 SAML integration and I have configured all the details as per wiki page. At present, I am getting redirected to IDP and after authentication I am getting reverted to AEM instance /saml_login url with proper SAML assestions but user is not getting created as per SAML component settings... How do I ensure that user gets created as per SAML response ? Also, for redirection I have created saml_login (sling:Folder) node and SAMLResponse and RelayState are gettting modified...

Views

1.7K

Likes

2

Replies

8
Re: SAML Synchronized Attributes
Avatar

amitmsharma

Employee

amitmsharma
- Adobe Experience Manager
Hi Sham, I have query related to same thread. I have users saved in the path as /home/users/a/where a represt first letter of email address. how do I save other properties for this user like name and surname .. using synchronized attributes.\Amit

Views

592

Likes

0

Replies

0
Likes given to