My Oracle Support Banner

Federating Two 10gAS SSO: SP Application Access Looping in Browser After IDP Login (Doc ID 467459.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Identity Federation - Version: and later   [Release: 10g and later ]
Information in this document applies to any platform.
***Checked for relevance on 29-May-2010***


Two separate 10gAS SSO environments have been integrated with Federation with reference to documentation: Oracle� Application Server Single Sign-On Administrator's Guide 10g ( Chapter 13 Integrating with Oracle Identity Federation.

Steps taken:

One SSO configured as IDP and the other SSO as SP.
OIF configured to use the SAML 2.0 protocol in the circle of trust.
SSO configured on both IDP and SP for Federation integration.


When accessing the application, after logging into the IDP SSO the redirect back to the application protected by SP SSO goes into loop.

The debug ssoServer.log output from SP SSO shows error 'osso_sassoTokenstring not found in request.' when authenticating.

Example ssoServer.log:

Wed Oct 31 17:53:05 CET 2007 [DEBUG] AJPRequestHandler-ApplicationServerThread-6 Calling Authentication method
Wed Oct 31 17:53:05 CET 2007 [INFO] AJPRequestHandler-ApplicationServerThread-6 osso_sassoTokenstring not found in request.
Wed Oct 31 17:53:05 CET 2007 [DEBUG] AJPRequestHandler-ApplicationServerThread-6 IPASInsufficientCredException caught in authenticate: auth_fail_exception
Wed Oct 31 17:53:05 CET 2007 [DEBUG] AJPRequestHandler-ApplicationServerThread-6 Rethrow exception auth_fail_exception
at (
at javax.servlet.http.HttpServlet.service(
at javax.servlet.http.HttpServlet.service(
at com.evermind.server.http.ServletRequestDispatcher.invoke(
at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(
at com.evermind.server.http.HttpRequestHandler.processRequest(
at com.evermind.util.ReleasableResourcePooledExecutor$


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

Platforms: 1-914CU;

This document is being delivered to you via Oracle Support's Rapid Visibility (RaV) process and therefore has not been subject to an independent technical review.

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.