Problem Cyberark PVWA as SP

Yakov Revyakin yrevyakin at
Fri Apr 19 16:59:22 EDT 2019

Hi Nate,
I tried Redirect before with no success. I get a screen with Unsupported
Request as well as lines in log look like:

2019-04-19 23:46:46,301 -  - WARN [DEPRECATED:118] - XML Element
'SourceAttribute', (file
[D:\Soft\shibboleth-idp\conf\attribute-resolver.xml]): This will be removed
in the next major version of this software; replacement is by using
<InputAttributeDefinition> and <InputDataConnector>
2019-04-19 23:46:48,618 -  - WARN [DEPRECATED:118] - Spring bean
'c14n/LegacyPrincipalConnector', (c14n/subject-c14n.xml): This will be
removed in the next major version of this software; replacement is <remove>
2019-04-19 23:48:49,196 - - WARN
[net.shibboleth.idp.profile.impl.SelectProfileConfiguration:117] - Profile
Action SelectProfileConfiguration: Profile is not available for RP
configuration shibboleth.UnverifiedRelyingParty (RPID Cyberark4Hide)
2019-04-19 23:48:49,214 - - WARN
[org.opensaml.profile.action.impl.LogEvent:105] - A non-proceed event
occurred while processing the request: InvalidProfileConfiguration

I wrote SP metadata as:
<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"
xmlns:ds="" entityID="Cyberark4Hide"
   <md:SPSSODescriptor AuthnRequestsSigned="false"

Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="
index="0" isDefault="true"/>

On Fri, 19 Apr 2019 at 19:57, Nate Klingenstein <ndk at> wrote:

> Yakov,
> You're sending a GET AuthnRequest to a POST decoder.  Pick one or the
> other, and I'd recommend the redirect option.
> Thanks,
> Nate.
> --
> For Consortium Member technical support, see
> To unsubscribe from this list send an email to
> users-unsubscribe at
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the users mailing list