IdP configuration

[prasenj...@nutanix.com]

SimpleSAML_Error_Error: SSOPARAMS

Backtrace:
0 www/saml2/idp/SSOService.php:22 (N/A)
Caused by: Exception: Unable to find the current binding.
Backtrace:
2 vendor/simplesamlphp/saml2/src/SAML2/Binding.php:104 (SAML2\Binding::getCurrentBinding)
1 modules/saml/lib/IdP/SAML2.php:315 (sspmod_saml_IdP_SAML2::receiveAuthnRequest)
0 www/saml2/idp/SSOService.php:19 (N/A)

When I am configuring the IdP with simpleSAML and register an application, it give me this error on redirecting. I also have another setup which is working with same IdP. Based on my understanding,

I can see only the SAMLRequest is passed in the working and same is not passed in case of the Application. Can you guide me in fixing the issue ?  Is it the IdP configuration issue.

Application SP is configured with param  : AssertionConsumerService  (I am not about the param, but this one I can see in the SP-Metadata of the application). 

Thanks,

Prasenjit

[prasenj...@nutanix.com]

Hi,

Please give me some guidance on on below error. I am not able to understand the meta config issue. 

Thanks,

Prasenjit

--------------------------

[pat...@cirrusidentity.com]

Looks like you SP is not sending a valid SAMLRequest parameter to the IdP.

You can use the SAML Tracer firefox plugin to better see what the SP is sending.

[prasenjit singh]

But the application sp works fine with adds idp and okta idp. Should not it be sending all default parama for saml protocol? And why can't we modify it on idp configuration side?

On Sun, Aug 19, 2018, 12:38 AM <pat...@cirrusidentity.com> wrote:

Looks like you SP is not sending a valid SAMLRequest parameter to the IdP.

You can use the SAML Tracer firefox plugin to better see what the SP is sending.

--
This is a mailing list for users of SimpleSAMLphp, not a support service. If you are willing to buy commercial support, please take a look here:
 
https://simplesamlphp.org/support
 
Before sending your question, make sure it is related to SimpleSAMLphp, and not your web server's configuration or any other third-party software. This mailing list cannot help with software that uses SimpleSAMLphp, only regarding SimpleSAMLphp itself.
 
Make sure to read the documentation:
 
https://simplesamlphp.org/docs/stable/
 
If you have an issue with SimpleSAMLphp that you cannot resolve and reading the documentation doesn't help, you are more than welcome to ask here for help. Subscribe to the list and send an email with your question. However, you will be expected to comply with some minimum, common sense standards in your questions. Please read this carefully:
 
http://catb.org/~esr/faqs/smart-questions.html
---
You received this message because you are subscribed to the Google Groups "SimpleSAMLphp" group.
To unsubscribe from this group and stop receiving emails from it, send an email to simplesamlph...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

[Patrick Radtke]

On Saturday, August 18, 2018 at 5:37:47 PM UTC-7, prasenjit singh wrote:

But the application sp works fine with adds idp and okta idp. Should not it be sending all default parama for saml protocol?

Yes, the application should send a valid SAMLRequest /AuthNReques to the idp.  No one on the mailing list is using your application. We don't even know if you application uses SimpleSAMLPhP. You need to be one that checks if its sending a valid request. The SAML tracer plugin for Firefox I mentioned early makes that easier to do. Once you determine if it is sending a valid request to your SSO service endpoint then you can determine if your issue is in the application or in your IdP.

 

And why can't we modify it on idp configuration side?

What is "it" referring to? If it is the application SP then the application has its own configuration and is independent from the IdP.

- Patrick