SAML authentication is failing due to AIQUM server/ssl certificate expired
Applies to
- Active IQ Unified Manager (AIQUM)
- Identity Provider (IDP)
- User Interface (UI)
- Security Assertion Markup Language [SAML]
Issue
AIQUM UI Error:
Login Failed.
Error validating SAML message. Response has invalid status code urn:oasis:names:tc:SAML:2.0:status:Responder, status message is null. Contact your Active IQ Unified Manager administrator.
Browser Inspect Tool:
<html><head><title>Active IQ Unified Manager | Error</title></head><body><h1>Login Failed.</h1><p>Error validating SAML message. Response has invalid status code urn:oasis:names:tc:SAML:2.0:status:Responder, status message is null. Contact your Active IQ Unified Manager administrator.</p></body></html>
AIQUM server.log:
INFO [qpid.message.keystore.expiring] (broker-AIQUM-pool-1) [Housekeeping] KST-1005 : KeyStore UMKeystore Certificate expires in 0 days : CN=aiqum.fqdn