E-Series SANtricity System Manager integration with SAML fails at the test login step
Applies to
- SANtricity System Manger
- Security Assertion Markup Language (SAML)
Issue
- During initial configuration of the Security Assertion Markup Language (SAML) feature with E-Series SANtricity System Manager application, the SSO test login (step 4) fails:
- The E-Series embedded Web Services Proxy logs (
web-server-trace-log-%.7z
) available in a support bundle and AutoSupport indicates the SSO test login failed due to signature validation failure.
2021-02-01 22:00:55,434 ERROR [jetty-371645] c.n.e.a.r.s.SamlImpl [SamlImpl.java:349] [requestId=40e04f69-c3df-4e06-8a50-a196292c1259, deviceId=N/A] Caught exception processing assertion from SAML identity provider
Caller+0 at com.ni.eseries.aa.restapi.servants.SamlImpl.processSamlAssertion(SamlImpl.java:349)
Caller+1 at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
Caller+2 at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
Caller+3 at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
Caller+4 at java.base/java.lang.reflect.Method.invoke(Method.java:566)
org.opensaml.xmlsec.signature.support.SignatureException: SignableSAMLObject signature validation failed