OAM Service Provider Federation with SiteMinder Identity Provider Fails With HTTP-403 Forbidden

(Doc ID 1940409.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Identity Federation - Version and later
Information in this document applies to any platform.


Oracle Access Manager (OAM) or later has been configured as Service Provider (SP) with Siteminder Federation Security Services as Identity Provider (IdP).

Single sign-on (SSO) is failing with error in the browser HTTP-403 Forbidden.

The HTTP Header trace shows that the error is generated by the SiteMinder IdP after it is sent the SAML authentication request (SAMLRequest) by OAM.

For example:


If this is an OAM installation upgraded from then this integration was previously working and fails after upgrade.


Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms