My Oracle Support Banner

Getting 403 Error Due to 'Unsupported callback: weblogic.security.auth.callback.IdentityDomainUserCallback' Exception after configuring SAML SSO (Doc ID 2567738.1)

Last updated on AUGUST 14, 2020

Applies to:

Oracle WebLogic Server - Version 12.2.1.3.0 and later
Information in this document applies to any platform.

Symptoms

Weblogic SAML URL issue 

Getting 403 Forbidden errors in SAML SSO configuration (Weblogic as Service Provider and IDCS as identity provider) even after following below URLS :

http://www.ateam-oracle.com/idcs-and-weblogic-federation-with-virtual-users-and-groups and https://blogs.oracle.com/blogbypuneeth/steps-to-configure-saml-20-with-idcs-identity-cloud-service-as-identity-provider-and-jcs-oracle-java-cloud-service-as-service-provider .

After enable the following debug flags on the affected server instance you will see debug messages similar to the ones below:

weblogic -> security -> atn

weblogic > security > saml

Subject is not getting created for the user : xxx.xxx@oracle.com



Changes

 Identity domain field in the SAMLauthetication provider has been added .

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.