Issue With Installation Of Oracle Identity Federation With Oracle Access Manager (Doc ID 1319181.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Identity Federation - Version: 11.1.1.1 and later   [Release: and later ]
Information in this document applies to any platform.

Symptoms


Oracle Identity Federation (OIF) 11g as Service Provider (SP) has been configured with Oracle Access Manager (OAM) SP Integration Engine.

SP application resources have been protected in OAM with an authentication scheme that will redirect to the OIF SP for authentication. OIF SP will redirect to an Identity Provider (IdP) which may or may not be OIF.

When an attempt is made to access the SP application, which will trigger SP-initiated Single Sign On (SSO), an HTTP-500 Internal Server Error error occurs.

The URL in the address bar is referencing the OIF SP hostname.domain and HTTP port when the error occurs.

This problem may occur with HTTP POST method as well as Artifact method.

The SP OIF 11g managed server log shows error 'Could not find the AuthnRequest associated to the Assertion'.

Example log entries:

[2011-04-04T19:26:37.898+02:00] [wls_oif1] [ERROR] [FED-15011]
[oracle.security.fed.eventhandler.profiles.sp.sso.assertion.Saml20AssertionProcessor] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 004c1gFhj3ZFw000jzwkno00018d00002_,0:1] [APP: OIF#11.1.1.2.0] [dcid: 11d1def534ea1be0:1596b62a:12f215cb748:-8000-00000000000007e2] [URI: /fed/sp/art20] Cannot find the authentication request associated with the assertion.

[2011-04-04T19:26:37.901+02:00] [wls_oif1] [ERROR] [FED-12064]
[oracle.security.fed.controller.ActionStateMachine] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 004c1gFhj3ZFw000jzwkno00018d00002_,0:1] [APP: OIF#11.1.1.2.0] [dcid:
11d1def534ea1be0:1596b62a:12f215cb748:-8000-00000000000007e2] [URI: /fed/sp/art20] Exception:
{0}[[oracle.security.fed.event.EventException: Could not find the AuthnRequest associated to the Assertion
at oracle.security.fed.eventhandler.profiles.sp.sso.assertion.Saml20AssertionProcessor.checkSubjectConfirmation(Unknown Source)
at oracle.security.fed.eventhandler.profiles.sp.sso.assertion.Saml20AssertionProcessor.processAssertion( Unknown Source)
at oracle.security.fed.eventhandler.profiles.sp.sso.v20.ProcessResponseEventHandler.perform(Unknown Source)
at oracle.security.fed.controller.ActionStateMachine.processEvent(Unknown Source)
at oracle.security.fed.controller.EventControllerImpl.processEvent(Unknown Source)
at oracle.security.fed.controller.ApplicationController.publishEvent(Unknown Source)
at oracle.security.fed.controller.ApplicationController.publishEvent(Unknown Source)
at oracle.security.fed.controller.web.action.ResponseHandlerContext.publishEvent(Unknown Source)
at oracle.security.fed.http.flow.profiles.sp.SendSoapRequestSSOResponseHandler.perform(Unknown Source)
at oracle.security.fed.controller.ApplicationController.processServletRequest(Unknown Source)
at oracle.security.fed.controller.web.servlet.FederationServlet.doGet(Unknown Source)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:707)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:821)
at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:27)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at oracle.dms.wls.DMSServletFilter.doFilter(DMSServletFilter.java:330)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.doIt(WebAppServletContext.java:3684)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3650)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2268)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2174)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1446)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)



Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms