Oracle Identity Federation (OIF 11.1.2.2.0) - Users Unable to Authenticate, Federation Response is Sending with Two "\\"
(Doc ID 1987479.1)
Last updated on JULY 27, 2022
Applies to:
Oracle Access Manager - Version 11.1.2.2.0 and laterInformation in this document applies to any platform.
Symptoms
Oracle Identity Federation (OIF 11.1.2.2.0) Users Unable to Authenticate, Federation Response is Sending with Two "\\"
- When user has multiple values in an attribute with comma (,) separated delimiter federation response is sending with two "\\," values and that is causing the issue to our application which cannot read "\"
- Oracle Access Manager 11gR2PS2 (OAM 11.1.2.2) is implemented by the customer as Identity Provider (IdP).
- Oracle Identity Federation (OIF 11.1.2.2.0) has been configured to send attributes in Assertions to SPs.
Steps to reproduce
-----------------------------
1. Perform IdP or SP initiated SSO with OAM IdP.
2. When prompted for IdP login, login with userid having multiple values for attributes sent with the assertion e.g. givenname.
3. SP generates error.
Example:
displayname=<VALUE>
cn=<VALUE>
carlicense=<VALUE>
cn=<VALUE>
carlicense=<VALUE>
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Changes |
| Cause |
| Solution |
| References |