My Oracle Support Banner

In WebLogic, Partner Not Found, Returning Forbidden SAML Error (Doc ID 1369989.1)

Last updated on SEPTEMBER 03, 2019

Applies to:

Oracle WebLogic Server - Version 10.3 and later
Information in this document applies to any platform.
SAML SSO configured in WLS environment does not work and gets the below error in the debug(SecuritySAMLService)logs


Symptoms

####<Sep 13, 2011 8:59:05 AM CST> <Debug> <SecuritySAMLService> <... <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <SAMLSingleSignOnService.doITSGet: Partner not found, returning FORBIDDEN>

 

Log Snippet:
Destination Site:-
====================================================================================================================================================================================================================

##<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <SAMLServletAuthenticationFilter doFilter()>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <SAMLServletAuthenticationFilter request parameters:>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <SAMLServletAuthenticationFilter request attributes:>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <  weblogic.servlet.request.sslsession: javax.net.ssl.impl.SSLSessionImpl@1d252d3>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <  javax.servlet.request.key_size: 128>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <  weblogic.servlet.network_channel.sslport: 7101>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <  javax.servlet.request.cipher_suite: TLS_RSA_WITH_RC4_128_MD5>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <SAMLServletAuthenticationFilter request headers:>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <  Accept: image/jpeg, application/x-ms-application, image/gif, application/xaml+xml, image/pjpeg, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-shockwave-flash, */*>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <  Accept-Language: zh-CN>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <  User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8)>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <  Accept-Encoding: gzip, deflate>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <  Host: <host.domain>:<port>>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <  Connection: Keep-Alive>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <SAMLServletAuthenticationFilter context path: /App>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <SAMLServletAuthenticationFilter request method: GET>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <SAMLServletAuthenticationFilter request URL: https://{host.domain}:{port}/{ServiceAction.action}>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <SAMLDestinationSiteHelper: doSourceSiteRedirect(): Processing source site redirect, redirect URI is '/App/AppServiceAction.action'>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <SAMLDestinationSiteHelper: doSourceSiteRedirect(): Processing source site redirect, ITS URL is 'https://{RP_host.domain}:{rp_port}/samlits_ba/its?RPID=rp_00001&'>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <SAMLDestinationSiteHelper: doSourceSiteRedirect(): Request query string is: ''>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <SAMLDestinationSiteHelper: doSourceSiteRedirect(): Prepped query string is: '&'>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <SAMLDestinationSiteHelper: doSourceSiteRedirect(): TARGET param is 'TARGET=https://{host.domain}:{port}/{ServiceAction.action}'>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <SAMLDestinationSiteHelper: doSourceSiteRedirect(): Assembled redirect URL: 'https://{RP_host.domain}:{rp_port}/samlits_ba/its?RPID=rp_00001&TARGET=https://{host.domain}:{port}/{ServiceAction.action}&'>
####<Sep 20, 2011 11:47:30 PM CST> <Debug> <SecuritySAMLService> .. <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <> <BEA-000000> <SAMLDestinationSiteHelper: doSourceSiteRedirect(): Encoded redirect URL: 'https://{RP_host.domain}:{rp_port}/samlits_ba/its?RPID=rp_00001&TARGET=https://{host.domain}:{port}/{ServiceAction.action}&'>
#
====================================================================================================================================================================================================================


Source Site:-
====================================================================================================================================================================================================================
####<Sep 20, 2011 11:47:41 PM CST> <Debug> <SecuritySAMLService> <... <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tu ning)'> <> <> <> <> <BEA-000000> <SAMLServlet (samlits): doGet(): Request URI is '/samlits_ba/its'>
####<Sep 20, 2011 11:47:41 PM CST> <Debug> <SecuritySAMLService> <... <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tu ning)'> <> <> <> <> <BEA-000000> <SAMLServlet (samlits): doGet(): Servlet URI is '/its'>
####<Sep 20, 2011 11:47:41 PM CST> <Debug> <SecuritySAMLService> <... <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tu ning)'> <> <> <> <> <BEA-000000> <SAMLSingleSignOnService.doITSGet: Request URI is '/samlits_ba/its'>
####<Sep 20, 2011 11:47:41 PM CST> <Debug> <SecuritySAMLService> <... <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tu ning)'> <> <> <> <> <BEA-000000> <SAMLSingleSignOnService.doITSGet: Servlet URI is '/its'>
####<Sep 20, 2011 11:47:41 PM CST> <Debug> <SecuritySAMLService> <... <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tu ning)'> <> <> <> <> <BEA-000000> <SAMLSingleSignOnService.doITSGet: Partner not found, returning FORBIDDEN>
====================================================================================================================================================================================================================

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.