IdP Inititated Request results in AuthN response
I have APM setup as an SP, bound to an external IdP. The flow is the user logs into the IdP and clicks on the link to my SP FQDN to serve as an IdP inititated SAML auth. Access Policy is simple, just a SAML Auth followed by a SSO variable assign. In the APM debug logs, we see where APM believes the inbound request to be a SP inititated request and an AuthN request is sent back to the IdP, resulting in the user being 302 redirected back to the IdP login page. Everything is encrypted so hard to say just yet but am I right to think that the SAML assertion is either not being generated properly from the IdP and sent over or the encryption keys/certs are wrong? Anything else I can do to troubleshoot before I strip off all the encryption requirements to get a look into the payload?367Views0likes1Comment