OAM 11.1.2.2 Service Provider Federation with SiteMinder Identity Provider Fails With HTTP-403 Forbidden (Doc ID 1940409.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Identity Federation - Version 11.1.2.2.0 and later
Information in this document applies to any platform.

Symptoms

Oracle Access Manager (OAM) 11.1.2.2 or later has been configured as Service Provider (SP) with Siteminder Federation Security Services as Identity Provider (IdP).

Single sign-on (SSO) is failing with error in the browser HTTP-403 Forbidden.

The HTTP Header trace shows that the error is generated by the SiteMinder IdP after it is sent the SAML authentication request (SAMLRequest) by OAM.

For example:

 

If this is an OAM installation upgraded from 11.1.2.1 then this integration was previously working and fails after upgrade.



Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms