EM 13.5: SAML SSO Login Not Working and Going in a Loop, When There is a Reverse Proxy in between SLB and OMS Servers.
(Doc ID 3055678.1)
Last updated on DECEMBER 01, 2024
Applies to:
Enterprise Manager Base Platform - Version 13.5.0.0.0 and laterInformation in this document applies to any platform.
Symptoms
Successfully configured the SAML SSO on following the <Note: 2882744.1>
After providing SSO credentials, the EM Console goes in a loop and is not able to open the OMS homepage.
Enable the Weblogic DEBUG as per: <Note 2969213.1>
<gc_inst>/user_projects/domains/GCDomain/servers/EMGC_OMS1/logs/EMGC_OMS1.out
<Oct 16, 2024 5:41:54,929 PM UTC> <Debug> <WebAppSecurity> <BEA-000000> <weblogic.servlet.internal.ServletSecurityContextImpl@3100e199 ChainedSecuirtyModule checking access with weblogic.servlet.security.internal.CertSecurityModule@24c2793f>
<Oct 16, 2024 5:41:54,929 PM UTC> <Debug> <WebAppSecurity> <BEA-000000> <Login failed for request: weblogic.servlet.internal.ServletRequestImpl@551cb843[
GET /em/websvcs/restful/emws/emcore/oms/v1/intmetrics/metric?metricName=console_AdminMsgCallbackDuration HTTP/1.1
Accept: application/json...
]
javax.security.auth.login.LoginException: [Security:090377]Identity Assertion Failed, weblogic.security.spi.IdentityAssertionException: [Security:090377]Identity Assertion Failed, weblogic.security.spi.IdentityAssertionException: Invalid token type or token not found
at com.bea.common.security.internal.service.IdentityAssertionServiceImpl.assertIdentity(IdentityAssertionServiceImpl.java:89)
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Cause |
| Solution |
| References |