Outlook STS Authentication Failing Due To Error FAULT MESSAGE: Audience URI For SAML Assertion Is Invalid. (Doc ID 1945912.1)

Last updated on MARCH 30, 2016

Applies to:

Oracle Fusion CRM for Microsoft Outlook - Version and later
Oracle Fusion CRM for Microsoft Outlook Cloud Service - Version and later
Information in this document applies to any platform.


On : version (3.06.02), Authentication, Authorization & Single Sign-on

When attempting to login to Sales Cloud for Outlook using ADFS STS 2.0 authentication, the following error occurs.
[14-11-07 11:07:08.334863,T3408] [info] [connector_site]: [11:07:08.334863],,{logf}: An unsecured or incorrectly secured fault was received from the other party. See the inner FaultException for the fault code and detail.
InnerExceptiond:InvalidSecurityToken : The security token is not valid.
[14-11-07 11:07:08.381731,T3408] [info] [connector_site]: [11:07:08.381731],,{logf}: soap_file='soap_2014-11-07T17-07-07-053.xml.gz.bin' file_size='0'
[14-11-07 11:07:08.397354,T3408] [ERROR] [connector_site]: [11:07:08.397354],,{first chance exception}: struct synchronization::sync_storage::transport_error: The security certificate is invalid or not installed. Please install valid security certificate.

The OrderCaputerServer Log shows
[2014-11-07T17:07:08.790+00:00] [OrderCaptureServer_1] [ERROR] [OWS-04086] [oracle.webservices.service] [tid: [ACTIVE].ExecuteThread: '9' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: anonymous] [ecid: 0051oVNpZH9F4ED5RBc9yd0002RG0001fD,0:3] [APP: OutlookEditionApp#V2.0] oracle.fabric.common.PolicyEnforcementException: InvalidSecurityToken : The security token is not valid.[[
Caused by: oracle.wsm.common.sdk.WSMException: InvalidSecurityToken : The security token is not valid.
Caused by: oracle.wsm.security.SecurityException: WSM-00008 : Web service authentication failed.
Caused by: javax.security.auth.login.LoginException
Caused by: FAULT CODE: InvalidSecurityToken FAULT MESSAGE: Audience URI for SAML assertion is invalid.

The issue can be reproduced at will with the following steps:
1. Configure Outlook STS Authentication
2. Install Sales Cloud for Outlook using STS authentication mode
3. Attempt to log

The issue has the following business impact:
Due to this issue, users cannot login using STS.


Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms