Metadata From OAM User Interface May be Considered Invalid by Some Federation Solutions (Doc ID 1664839.1)

Last updated on JANUARY 23, 2017

Applies to:

Oracle Access Manager - Version 11.1.2.2.0 and later
Information in this document applies to any platform.

Symptoms

When trying to import the SAML metadata from OAM 11gR2 (11.1.2.2) into ADFS 2.0 an error is reported on the ADFS side. ADFS gives the error "The required attribute xsi:type in the element RoleDescriptor is missing". The metadata appears to be missing xsi:type attribute in the RoleDescriptor element. According to the SAML metadata specification it looks like this is not a required attribute, however it does seem like many SAML implementations supply this additional attribute.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms