Incommon SP and IDP

Tom Scavo trscavo at gmail.com
Mon Feb 20 18:21:03 EST 2017


On Mon, Feb 20, 2017 at 6:04 PM, privas <pedro.rivas664 at csuci.edu> wrote:
>
> "The error means the SP requested use of a response location
> not authorized by the metadata." From the past couple of SSO projects I've
> implemented, I would use a SAML tracer to debug but I don't see any traces
> at all. Could their endpoint be wrong?

It should be fairly easy to determine if that's the case: Compare the
AssertionConsumerServiceURL in the AuthnRequest to the
md:AssertionConsumerService/@Location in metadata. Not sure why SAML
tracer isn't working for you. Have you checked your logs?

Tom


More information about the users mailing list