cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

getting 401 unauthorized with saml sso (SAP Commerce)

Go to solution
former_member809924
Explorer

on ‎2022 Jun 10 6:52 AM

2,656

Hi Experts,

I am implementing SAML SSO in sap commerce Backoffice.

Once control comes back to SAP Commerce after successful authentication from IDP, I am getting below error in sap commerce :

"https://localhost:9002/samlsinglesignon/saml/SSO"

HTTP Status 401 – Unauthorized

console log:

INFO [hybrisHTTP38] [SAMLProtocolMessageXMLSignatureSecurityPolicyRule] SAML protocol message was not signed, skipping XML signature processing

No error in console logs.

Regards,

Siddharth

Know the answer?

Help others by sharing your knowledge.

Answer

Need more details?

Request clarification before answering.

Show replies
Show replies
View Entire Topic
Aldali
Product and Topic Expert
Product and Topic Expert
‎2022 Jun 10 1:13 PM

Hello Siddharth,

First of all, The log message in your question is just an informative log message, hence you may just ignore it.

With regards to the error you are facing after the successful authentication from IDP and redirection to Commerce Backoffice, There are few possible root causes. I am listing down what come to my mind at the moment:

1- Checking SAML response: You may check the saml response from IDP using SAML Tracer Firefox Addon / Chrome extension. You can check the response attributes from IDP.


2- Checking SAML Mapping: You may check the correctness of SAML mapping in the Backoffice (System -> SAML Mapping) configuration.

3- Checking Saml sign sign on extension setup in your project: You may need to review the different configurations related to the extension.

Additionally, feel free to contact me thru my LinkedIn, I would be happy to assist 🙂


Regards,

Abdul Rahman Aldali

Show replies
Show replies
former_member809924
Explorer
‎2022 Jun 10 1:35 PM
0 Kudos

Thanks Abdul for quick response !

I have tried testing the SSO with incognito mode in browser and now the error doesn't show but the user is getting redirected to Backoffice login page.

The user is getting created in commerce but unable to access Backoffice after successful verification from IDP.

Any clue on this ?

former_member809924
Explorer
‎2022 Jun 13 6:04 AM

Hi Abdul,

This was resolved by referring to point "3- Checking Saml sign sign on extension setup in your project". Had to do few changes in property file and it worked.

Thanks again!

former_member788596
Explorer
‎2022 Aug 01 6:34 PM
0 Kudos

Hi Siddharth,

Can you please help me in which property did you change to make it work?

I am also facing the same issue.

Thanks in advance!

Akshay

Ask a Question