Unable to Authenticate to Wiki Server Since SAMLSSO Is Configured. HTTP-403 Is Raised (Doc ID 1082076.1)

Last updated on NOVEMBER 22, 2016

Applies to:

Oracle WebCenter Portal - Version 11.1.1.2.0 to 11.1.1.2.0 [Release 11g]
Information in this document applies to any platform.
Checked for relevance on 23-Jan-2014

Symptoms

After configuring the SAML SSO, login to OWC_wiki fails with HTTP-403.

The error below can be found in the WLS_Spaces.log file:

<Debug> <SecuritySAMLService> <fmw11g.vm.oracle.com> <WLS_Spaces> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1270566218834> <BEA-000000> <SAMLServlet (samlits): Initialized SAML samlits service>
<Debug> <SecuritySAMLService> <fmw11g.vm.oracle.com> <WLS_Spaces> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1270566218837> <BEA-000000> <SAMLServlet (samlits): doGet(): Request URI is '/webcenter/samlits/its'>
<Debug> <SecuritySAMLService> <fmw11g.vm.oracle.com> <WLS_Spaces> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1270566218837> <BEA-000000> <SAMLServlet (samlits): doGet(): Servlet URI is '/samlits/its'>
<Debug> <SecuritySAMLService> <fmw11g.vm.oracle.com> <WLS_Spaces> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1270566218845> <BEA-000000> <SAMLSingleSignOnService.doITSGet: Request URI is '/webcenter/samlits/its'>
<Debug> <SecuritySAMLService> <fmw11g.vm.oracle.com> <WLS_Spaces> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1270566218845> <BEA-000000> <SAMLSingleSignOnService.doITSGet: Servlet URI is '/samlits/its'>
<Debug> <SecuritySAMLService> <fmw11g.vm.oracle.com> <WLS_Spaces> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1270566218849> <BEA-000000> <SAMLSingleSignOnService.doITSGet: Partner not found, returning FORBIDDEN>

Changes

The SAML SSO was configured following the documentation:

Oracle Fusion Middleware Administrator's Guide for Oracle WebCenter 11g Release 1 (11.1.1)
Part Number E12405-05
23.7.3 Configuring SAML-based Single Sign-on

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms