Hi, Can you try enabled debug log: https://apereo.github.io/cas/5.3.x/installation/Troubleshooting-Guide.html#review-logs
And capture more logs for debugging purpose? Also, please be careful when reading the documentation, I see that you are using CAS 5.3.x, but you are viewing CAS 5.2.x documentation ( https://apereo.github.io/cas/5.2.x/integration/Delegate-Authentication.html) , which is not ideal... Judging from the limited information given, here's are some point that you might want to have a look at: ===================================================== - Would like to know, what are the functionality for both service #1SAMLServices-123456788.json and #2SAMLServices-123456789.json - From what I know, it is perfectly fine to just use a single json for one SP Somethinkg like this would work: *SAML2Client-300.json* { "@class" : "org.apereo.cas.support.saml.services.SamlRegisteredService", "serviceId" : "^https://cas.example.org:443/.*";, "name": "SAML2Client", "id": 300, "evaluationOrder" : 300, "metadataLocation" : "file:///etc/cas/resources/simplesamlphp-sp.xml" } - From what I know, seems entity ID is usually an *URL / name *instead of this *urn:mace:saml:pac4j.org*, My successful property is here (Note: mine is using CAS 6.1.1) cas.authn.pac4j.saml: - keystorePassword: changeit privateKeyPassword: changeit keystorePath: file:/etc/cas/thekeystore principalAttributeId: uid clientName: SAMLIdp serviceProviderEntityId: simplesamlphp serviceProviderMetadataPath: file:/etc/cas/saml/saml-self-sp-metadata.xml identityProviderMetadataPath: file:/etc/cas/saml/idp-metadata.php attributeConsumingServiceIndex: 1 nameIdPolicyFormat: urn:oasis:names:tc:SAML:2.0:nameid-format:transient Don't if can help you.... See if can helps. Cheers! - Andy -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/d7a94e4d-776d-4f38-8a56-ea90392483cc%40apereo.org.
