No peer endpoint available to which to send SAML response

Dave Vernon dvernon at
Tue Sep 30 13:26:14 EDT 2014

Thank you, that does help.

Now that I have a direction, I'll sit down with these docs and see if I can write a working set.

Dave Vernon
Technology Infrastructure Specialist
dvernon at

-----Original Message-----
From: users-bounces at [mailto:users-bounces at] On Behalf Of Cantor, Scott
Sent: Tuesday, September 30, 2014 1:04 PM
To: Shib Users
Subject: Re: No peer endpoint available to which to send SAML response

On 9/30/14, 12:58 PM, "Dave Vernon" <dvernon at> wrote:

>So does that mean that my problem is that I have the IdP invalid data?

Your problem is that the SP requested the response be sent to an endpoint that is not in the metadata you gave the IdP. So you need to look at what's in the metadata and look at what it's asking for in the SAML request, which means logging and/or browser plugins like SAML Tracer.

>Am I at least getting my metadata from the right spot?

There isn't any one spot to get it. You can get examples out of the software to build on, nothing more. The way you get metadata is by reviewing what's in it and adjusting it as needed to reflect the way the system is in fact set up.

-- Scott

To unsubscribe from this list send an email to users-unsubscribe at

More information about the users mailing list