Solved

SAML2Exception while accessing the link

Posted on 2016-11-14
6
27 Views
Last Modified: 2016-11-21
Hi Experts,

I have setup the ADFS 2.0 with SAML based windows authentication.

The setup was successful but while accessing the link it shows me a below error :

SAML2Exception.PNG
consecutive error
SAML2Exception_Next.PNG
What it says and How to resolve it?

Please guide.

Regards,
D Patel
0
Comment
Question by:D Patel
  • 4
  • 2
6 Comments
 
LVL 27

Assisted Solution

by:Dan McFadden
Dan McFadden earned 500 total points
ID: 41886347
The first error is an SSL Certificate name mismatch error.  The error page is telling you that the actual host name does not match the host name that is registered in the SSL Certificate.  For example:  this occurs when the server's name is web01.domain.com and the host name in the SSL Cert is www.domain.com.

1. Did you take this SSL Cert from another and install it on this server?

Then second error is also self explanatory, the http method GET is not on this URL that you are going to.  Also, this is a web page running on Apache & Tomcat.... what is the relationship to ADFS and this server?

Dan
0
 
LVL 7

Author Comment

by:D Patel
ID: 41887308
Hi Dan,

Thanks for the sugggestion. I will check this.

See, I want to setup Single Sing On for my ERP using ADFS. Hence, I configured the settings to use SSO.

Regards,
D Patel
0
 
LVL 7

Author Comment

by:D Patel
ID: 41887419
SSL Certificate is the Self-Signed and generated on the same PC.

Also, Host Name in Generated certificate and on my server is with same name.
0
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

 
LVL 27

Assisted Solution

by:Dan McFadden
Dan McFadden earned 500 total points
ID: 41887508
I would not recommend using a self-signed cert for SSO in Production.  Often, you will come across software that will try to validate the certificate chain and since it most likely will not know of your internal CA, it will throwing warnings at best or errors at worst.

If you say the name in the cert matches the machine its installed on, then there is other data in the cert that is incorrect or invalid.

Again, doing ADFS for SSO with a self-signed cert would be recommended (IMO).  For a test environment, it could be used.  But in Prod, its best to work with a certificate from a trusted CA.

Dan
0
 
LVL 7

Accepted Solution

by:
D Patel earned 0 total points
ID: 41890831
After re-configuring the ADFS settings my issue got resolved.

D Patel
0
 
LVL 7

Author Closing Comment

by:D Patel
ID: 41895653
Thanks for your help
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A procedure for exporting installed hotfix details of remote computers using powershell
While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

860 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question