Shibboleth upgrade from V3.3.1 toV3.4.6

Fri May 22 16:18:44 UTC 2020

I do not see any warn or error in the idp logs. 
I have compared response with the success logs. I see a difference in the NameQualifier. (Noot sure if that is causing the issue).

How can I pass provider value with V3.4.6 in relying-party.xml ?

Thanks & Regards
Anusha Reddimalli

-----Original Message-----
From: users <users-bounces at> On Behalf Of Matthew Slowe
Sent: Friday, May 22, 2020 4:08 AM
To: Shib Users <users at>
Subject: Re: Shibboleth upgrade from V3.3.1 toV3.4.6

> On 21 May 2020, at 22:19, REDDIMALLI, ANUSHA <REDDIMAA at> wrote:
> We are upgrading from V3.3.1 to V3.4.6. I am getting below error.
> opensaml::FatalProfileException at (****************************************************)
> Unable to establish security of incoming assertion.

Morning Ashuna,

You’re going to have to be a little more specific than that.

What were you trying to do when you got that error?

That looks like an error from a Service Provider rather than the Identity Provider, were there any warnings or errors in the IdP log for that authentication? Were there any errors in the SP log to explain it?

Matthew Slowe
Technical Specialist - Trust & Identity

Direct: 07442 097185
Team: 0300 300 2212, option 2
Lumen House, Library Avenue, Harwell Oxford, Didcot, OX11 0SG
For Consortium Member technical support, see
To unsubscribe from this list send an email to users-unsubscribe at

More information about the users mailing list