跳转到主内容

由于元数据不匹配, SAML 身份验证被拒绝

Views:
3
Visibility:
Customer
Votes:
0
Category:
oncommand-system-manager
Specialty:
om
Last Updated:

适用场景

  • System Manager 9.7
  • Microsoft ADFS

问题描述

  • 无法通过 SAML 向 System Manager 进行身份验证,因为 IdP 元数据不包含电子邮件地址
  • /mroot/etc/shibboleth/shibd.log 包含以下错误:

[kern_shibd:info:9583] ERROR OpenSAML.MetadataProvider.XML : metadata instance failed manual validation checking: EmailAddress must have TextContent

[kern_shibd:info:9583] WARN Shibboleth.SessionInitiator.SAML2 [1] [default]: unable to locate metadata for provider (https://sts.iconplc.com/adfs/services/trust)

Unknown or Unusable Identity Provider The identity provider supplying your login credentials is not authorized for use with this service or does not support the necessary capabilities

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

Scan to view the article on your device