OIF 11g Test SP SSO Page Fails With HTTP-500 Internal Server Error When Accessed Using External Hostname

(Doc ID 1466796.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Identity Federation - Version 11.1.1.5.0 and later
Information in this document applies to any platform.

Symptoms

Testing using the Oracle Identity Federation (OIF) 11.1.1.5 Test SP SSO page is failing with 500 Internal Server Error when OIF 11.1.1.5 SP-initiated SSO is attempted via the external, firewalled hostname.

The OIF Test SP SSO page is being used to perform SP-initiated SSO with the local OIF as Identity Provider.

Previously the Test SP SSO page was working, when OIF was being accessed using the internal Oracle HTTP Server (OHS) 11g hostname and port.

Now OIF HTTP requests are being routed via an external firewall/router and the routing is as follows:

External address e.g. https://sso.oracle.com    ==>    Internal address  e.g. http://appsrv01.oracle.com:7779


The Test SP SSO page can be accessed successfully using the external host e.g. https://sso.oracle.com/fed/user/testspsso.

However after setting parameter values in the page and clicking the Start SSO button, error HTTP-500 Internal Server Error occurs.

The OIF managed server log shows an entry similar to the following for the failing request:


 

Steps to reproduce

1. Access https://sso.oracle.com/fed/user/testspsso, the OIF Test SP SSO application page is displayed.
2. Complete the fields on the Test SP SSO page as required.
3. Click the Start SSO button: Error 500 is displayed Internal Server Error.


Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms