SAML1.1 / SAML2 Throwing 403 Not Authorized -- Assertion is not yet valid (Doc ID 1342778.1)

Last updated on JUNE 09, 2017

Applies to:

Oracle WebLogic Server - Version 9.2 and later
Information in this document applies to any platform.

Symptoms

Getting 403 Forbidden errors in SAML SSO configuration (Weblogic as Service Provider)

Example with SAML 1.1

After enable the following debug flags on the affected server instance you will see debug messages similar to the ones below:

weblogic > security > saml

 

 

 

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms