Login to Imaging with SAML 2.0 and Okta As IDP Providers Generates HTTPS 403 Error
(Doc ID 2904506.1)
Last updated on APRIL 18, 2024
Applies to:
Oracle WebCenter Content: Imaging - Version 12.2.1.4.0 and laterInformation in this document applies to any platform.
Symptoms
SAML 2.0 has been configured with Okta as IDP, for WebCenter Imaging 12.2.1.4.0 in WebLogic 12.2.1.4.0, following the instructions in the Document 2663894.1 - How to Configure SAML 2.0 with Okta as IDP and WebLogic as SP. However, the SAML authentication is not working and users are unable to login to the WebCenter Imaging application successfully.
Details:
- Imaging application URL: https://<IPM_server>:16001/imaging/faces/Pages/Welcome.jspx
- Single Sign On URL (or) Recipient URL (or) Destination URL - configured in Okta: https://<IPM_server>:16001/saml2/sp/acs/post
- Audience URI: WLS_SP_for_Okta
- Configured the IDP from WLS console, reordered it to be the 1st provider. SAML Federation services are configured per requirements.
When the user clicks on the corresponding application chiclet in the Okta login page, it is redirecting and throwing 403 error on https://<IPM_server>:16001/saml2/sp/acs/post.
When accessing the "https://<IPM_server>:16001/imaging/faces/Pages/Welcome.jspx" page directly, it is redirecting to OKTA. After a successful OKTA login, it redirects to "https://<IPM_server>:16001/saml2/sp/acs/post" and ends with an HTTPS 403 error.
Changes
Implementing Single Sign-On with OKTA and SAML 2.0 Security Providers in WebLogic Server and Imaging
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |