Hi Everyone,
I am trying to set up a SAML authentication source as detailed in the
PacketFence Installation Guide. I have followed the guide, uploaded
the IdP metadata, certificates etc and I am getting as far as hitting
the IdP’s login page and entering credentials. Upon return to the PF
portal, I get the error:
“Can’t validate Identity provider return message : The profile cannot
verify a signature on the message”.
Checking the logs at httpd.portal.error I am faced with:
Feb 5 22:13:21 httpd_portal_err: error : Unknown IO error
Feb 5 22:13:21 httpd_portal_err:
Feb 5 22:13:21 httpd_portal_err: (process:22392): Lasso-WARNING **:
22:13:21.434: 2020-02-05 22:13:21
Could not read KeyInfo from signing
KeyDescriptor
Feb 5 22:13:21 httpd_portal_err:
Feb 5 22:13:21 httpd_portal_err: (process:22392): Lasso-WARNING **:
22:13:21.440: 2020-02-05 22:13:21
Could not read KeyInfo from encryption
KeyDescriptor
I am struggling to find much information as to what could cause this
particular error. If anyone can point me in the correct direction I
would be eternally grateful!
A copy of the IdP metadata can be found here for reference:
https://pastebin.com/MYJUHwU7
Best regards,
Jonathan Nathanson
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
