SAML authentication fails and the following message is present in the Foglight Management Server (FMS) logs:
ERROR [http-exec-3] com.onelogin.saml2.authn.SamlResponse - Invalid issuer in the Assertion/Response. Was 'https://idp.yourdomain.com/', but expected 'https://foglight.yourdomain.com/'
The "Identity Provider Entity ID" under the SAML 2.0 settings for Foglight is set to the Identity ID of the Service Provider (Foglight) instead of the Identity Provider.
Update the "Identity Provider Entity ID" property to the Identity ID of the Identity Provider (IdP):
Note: The value depends on the Identity Provider (IdP) in use and should be available from the SAML settings or metadata of the IdP (E.g.: Entra ID, PingFederate, ADFS, etc); in the example error message the value is https://idp.yourdomain.com/
.
© 2024 Quest Software Inc. ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center