Solved

SAML2Exception while accessing the link

Posted on 2016-11-14
6
16 Views
Last Modified: 2016-11-21
Hi Experts,

I have setup the ADFS 2.0 with SAML based windows authentication.

The setup was successful but while accessing the link it shows me a below error :

SAML2Exception.PNG
consecutive error
SAML2Exception_Next.PNG
What it says and How to resolve it?

Please guide.

Regards,
D Patel
0
Comment
Question by:D Patel
  • 4
  • 2
6 Comments
 
LVL 26

Assisted Solution

by:Dan McFadden
Dan McFadden earned 500 total points
Comment Utility
The first error is an SSL Certificate name mismatch error.  The error page is telling you that the actual host name does not match the host name that is registered in the SSL Certificate.  For example:  this occurs when the server's name is web01.domain.com and the host name in the SSL Cert is www.domain.com.

1. Did you take this SSL Cert from another and install it on this server?

Then second error is also self explanatory, the http method GET is not on this URL that you are going to.  Also, this is a web page running on Apache & Tomcat.... what is the relationship to ADFS and this server?

Dan
0
 
LVL 5

Author Comment

by:D Patel
Comment Utility
Hi Dan,

Thanks for the sugggestion. I will check this.

See, I want to setup Single Sing On for my ERP using ADFS. Hence, I configured the settings to use SSO.

Regards,
D Patel
0
 
LVL 5

Author Comment

by:D Patel
Comment Utility
SSL Certificate is the Self-Signed and generated on the same PC.

Also, Host Name in Generated certificate and on my server is with same name.
0
How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

 
LVL 26

Assisted Solution

by:Dan McFadden
Dan McFadden earned 500 total points
Comment Utility
I would not recommend using a self-signed cert for SSO in Production.  Often, you will come across software that will try to validate the certificate chain and since it most likely will not know of your internal CA, it will throwing warnings at best or errors at worst.

If you say the name in the cert matches the machine its installed on, then there is other data in the cert that is incorrect or invalid.

Again, doing ADFS for SSO with a self-signed cert would be recommended (IMO).  For a test environment, it could be used.  But in Prod, its best to work with a certificate from a trusted CA.

Dan
0
 
LVL 5

Accepted Solution

by:
D Patel earned 0 total points
Comment Utility
After re-configuring the ADFS settings my issue got resolved.

D Patel
0
 
LVL 5

Author Closing Comment

by:D Patel
Comment Utility
Thanks for your help
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Synchronize a new Active Directory domain with an existing Office 365 tenant
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now