Metadata import of a remote IdP entity fails

Document ID : KB000073123
Last Modified Date : 13/03/2018
Show Technical Document Details
Issue:
Metadata import of a remote IdP entity fails with the following error message:
Error: Exception trying to extract entities from metadata
 
The following error is logged in server.log.
Page cannot be found. Please check the URL.
 
ERROR [com.ca.federation.adminui.backingbean.federation.ImportMetadataWizardStepListener]  **ERROR** com.ca.fedxps.api.remote.FedXPSException during UI operation.
com.ca.fedxps.api.remote.FedXPSException: com.ca.federation.client.XPSException
 
Environment:
CA Single Sign On Policy Server 12.52 SP2
OS: Windows 2012 R2
Resolution:
This issue occurs if you opted to sign the certificate during the metadata export but did not send the certificate/public key in the metadata. CA SSO does not recommend such an import. As a workaround, you can delete the Signature section in the metadata file and re-import it.