Negative Assertion

Document ID : KB000028790
Last Modified Date : 14/02/2018
Show Technical Document Details

OVERVIEW

When a SAML 2.0 authentication request is successful, the response to the Service Provider carries with it the authentication assertion. A rejected authentication request previously only resulted in the end user getting an error message. The Service Provider got no notification of the failed status. Because control returns to the Service Provider, the Service Provider can determine whether to redirect the user, or take any other appropriate action.

With negative assertion, you can configure assertion response to the Service Provider on authentication failure.

 

REQUIREMENTS

  • ·         Policy Server, the Web Agent, and the Web Agent Option Pack are all required to be at SM r12.52 release

  •  

    ·         Setup and enable Session Store on IdP

  •  

    ·         Works with SP-initiated SSO (SAML2.0)

USE CASE

1.      Post a SP-initiated SSO request via internet browser.

2.      Enter valid username with incorrect password when user is challenged.

 

3.      Checked Service Provider’s log to confirm if assertion with “AuthnFailed” status code is received.

 

SETUP

1.      IdP: Create local SAML2 IdP entity and create/import remote SAML2 SP entity. Create SAML2 IdP->SP partnership

2.      SP:Create local SAML2 SP entity and create/import local SAML2 IdP entity. Create SAML2 SP->IdP partnership

3.      IdP: Create EPM Application or policies domain to protect the authentication URL (/siteminderagent/redirectjsp/) with Basic or Form authentication scheme

4.      IdP:Create response with “WebAgent-OnReject-eGovNegResponse” as the attribute type. Create an OnAuthReject rule/ resource and create a policy to link OnAuthReject with the WebAgent-OnReject-eGovNegResponse response

5.      IdP: Enable a negative authentication response in the SSO configuration step of the IdP-to-SP partnership configuration. Enable “Negative Authentication Response” check box.

6.      IdP & SP: activate the partnerships

 

SNIPPET OF FWSTRACE:

IdP:

[10/16/2014][09:30:24][1468][4036][][agentcommon][][Requesting data for ConfigManager ID C:\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/16/2014][09:30:24][1468][4036][][agentcommon][][Administration Manager is returning data for ConfigManager ID C:\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][doGet][SAML2 Single Sign-On Service received GET request.]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][FWSBase.java][doRequestLog][Requesting Host: 192.168.142.144 Requesting Host IP: 192.168.142.144 Request protocol: HTTP/1.1 Request was secure: false Authentication type: null]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][doGet][Query String: SAMLRequest=fVDLboMwELznK5DvwQ9MiC1AipRLpFaKQtVDL5WxjYJqbMqaPv6%2BbnpoT93DHFazM7NTH9Z49Rf7ulqI2THB6FUcg2%2FQNcZZYnyhrGTdmeYv1rnPXIcJq2F4tz3Y5W3UFvC89m7UGNTkGEBA2enYoGeje2P4rhDG7gwpq2K%2Ft4L3hotKD6aoBCM8UQFWe%2FIQlY8NYoTyLSVbWj4wJgsiGX9C2aNd4JaI5QRlH5Pz0KB18TIoGEF6NVmQUcvucH8nE0fOS4hBB4faTZam9kDlzWj5uZZp8b%2BCgvTddw2odcEQxkV3rvGvTrup8d%2Fm2i8%3D&RelayState=dccbb820fd0027c92b6fc4a63c30dd88897b3c3b]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][getAuthnRequestData][AuthnRequest: <AuthnRequest Destination="http://R1252SP1.kelly.com/affwebservices/public/saml2sso" ID="_dcbdd4639de6d057388e94bd497cfd379204" IssueInstant="2014-10-15T22:30:24Z" Version="2.0" xmlns="urn:oasis:names:tc:SAML:2.0:protocol">

    <ns1:Issuer xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion">lod0249SP</ns1:Issuer>

</AuthnRequest>]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][getAuthnRequestDataCommon][RequestID: _dcbdd4639de6d057388e94bd497cfd379204]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][getAuthnRequestDataCommon][RequestID _dcbdd4639de6d057388e94bd497cfd379204 maps to TransactionID: 471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906.]

[10/16/2014][09:30:24][1468][4036][][agentcommon][][Requesting data for ConfigManager ID C:\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/16/2014][09:30:24][1468][4036][][agentcommon][][Administration Manager is returning data for ConfigManager ID C:\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processRequest][Reading SAML 2.0 SP Configuration [CHECKPOINT = SSOSAML2_SPCONFREAD_REQ]]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SAML2Base.java][getServiceProviderInfo][Trying to fetch SAML2.0 SP Configuration from cache [CHECKPOINT = SAML2_SPCONFFROMCACHE_REQ]]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SAML2Base.java][getServiceProviderInfo][Obtained service provider information from cache for: lod0249SP.]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SAML2Base.java][getServiceProviderInfo][Obtained service provider information from cache for: lod0249SP.]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processRequest][ProviderID: lod0249SP]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processRequest][IsPassive: false]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processRequest][ForceAuthn: false]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processRequest][isSetAssertionConsumerServiceIndex: false]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processRequest][AssertionConsumerServiceIndex: 0]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processRequest][RelayState: dccbb820fd0027c92b6fc4a63c30dd88897b3c3b]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processRequest][authResult: null]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][getACSIndexRow][Found the ACS Row corresponding to index: 0]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][getACSIndexRow][ACS Binding: HTTP-Post]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][getACSIndexRow][ACS URL: http://lod0249.lod.ca.com/affwebservices/public/saml2assertionconsumer]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][ACSIndexDefaultBinding][Settting the Binding for the Default Assertion Consumer Service to: HTTP-Post]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processRequest][Unable to get Assertion Consumer URL. Verifying for Default Assertion Consumer URL in config]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processRequest][Using Post binding derived from the Assertion Consumer Service Index]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processRequest][AffiliateName: r1252sp1idp-lod0249sp]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processRequest][RealmOID: 06-ef19123a-9b5b-4f21-8ed9-5189688a4bbe]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processRequest][Request to validate the session [CHECKPOINT = SSOSAML2_SESSIONCOOKIEVALIDATE_REQ]]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][FWSBase.java][isValidSession][Checking for valid SESSION cookies.]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][FWSBase.java][isValidSession][No SESSION cookie on request.]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processRequest][Force Authn is disabled.]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processRequest][Current session state is: false]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processRequest][Current session is not a valid session.]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processRequest][Session cookie does not exists. redirecting to authentication url [CHECKPOINT = SSOSAML2_AUTHENTICATIONURL_REDIRECT]]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][getLocalServiceURL][Enter getLocalServiceURL]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][getLocalServiceURL][Using Proxy URL for local SSO service:  http://R1252SP1.kelly.com/affwebservices/public/saml2sso]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processAuthentication][Not using secure authentication URL.]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processAuthentication][SAMLTransactionID 87b43b14-a6ee779a-e48c33ad-1c7f921c-0b8dc3cc-1e maps to TransactionID: 471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906.]

[10/16/2014][09:30:24][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][saveRequestData][Enter saveRequestData]

[10/16/2014][09:30:24][1468][4036][][agentcommon][][Requesting data for ConfigManager ID C:\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/16/2014][09:30:24][1468][4036][][agentcommon][][Administration Manager is returning data for ConfigManager ID C:\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/16/2014][09:30:25][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SAMLTunnelClient.java][saveRequestInfo][Tunnel result code: 1.]

[10/16/2014][09:30:25][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SAMLTunnelClient.java][saveRequestInfo][Response status code: 0.]

[10/16/2014][09:30:25][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][saveRequestData][Request data has been saved successfully in expiry data table]

[10/16/2014][09:30:25][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][createGuidCookie][Adding cookie:GUID to response]

[10/16/2014][09:30:25][1468][4036][471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906][SSO.java][processAuthentication][SAML2 Single Sign-On Service redirecting to authentication URL: http://R1252SP1.kelly.com/siteminderagent/redirectjsp/redirect.jsp?SAMLRequest=fVDLboMwELznK5DvwQ9MiC1AipRLpFaKQtVDL5WxjYJqbMqaPv6%2BbnpoT93DHFazM7NTH9Z49Rf7ulqI2THB6FUcg2%2FQNcZZYnyhrGTdmeYv1rnPXIcJq2F4tz3Y5W3UFvC89m7UGNTkGEBA2enYoGeje2P4rhDG7gwpq2K%2Ft4L3hotKD6aoBCM8UQFWe%2FIQlY8NYoTyLSVbWj4wJgsiGX9C2aNd4JaI5QRlH5Pz0KB18TIoGEF6NVmQUcvucH8nE0fOS4hBB4faTZam9kDlzWj5uZZp8b%2BCgvTddw2odcEQxkV3rvGvTrup8d%2Fm2i8%3D&RelayState=dccbb820fd0027c92b6fc4a63c30dd88897b3c3b&SMPORTALURL=http%3A%2F%2FR1252SP1.kelly.com%2Faffwebservices%2Fpublic%2Fsaml2sso&SAMLTRANSACTIONID=87b43b14-a6ee779a-e48c33ad-1c7f921c-0b8dc3cc-1e.]

[10/16/2014][09:30:33][1468][4036][][FWSBase.java][doInitLog][------------------------------------------------]

[10/16/2014][09:30:33][1468][4036][][FWSBase.java][doInitLog][FWS Base Service Initialization.]

[10/16/2014][09:30:33][1468][4036][][FWSBase.java][doInitLog][------------------------------------------------]

[10/16/2014][09:30:33][1468][4036][][FWSBase.java][init][Fips140Mode = 1]

[10/16/2014][09:30:33][1468][4036][17047616-1e53fd5a-2d25ae00-7f3bb917-980af831-86e4][ForwardService][doGet][Entering doGet]

[10/16/2014][09:30:33][1468][4036][17047616-1e53fd5a-2d25ae00-7f3bb917-980af831-86e4][ForwardService][redirectPerProtocol][Entering redirectPerProtocol]

[10/16/2014][09:30:33][1468][4036][17047616-1e53fd5a-2d25ae00-7f3bb917-980af831-86e4][ForwardService][redirectPerProtocol][Found in cookie 1:471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906]

[10/16/2014][09:30:33][1468][4036][][agentcommon][][Requesting data for ConfigManager ID C:\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/16/2014][09:30:33][1468][4036][][agentcommon][][Administration Manager is returning data for ConfigManager ID C:\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/16/2014][09:30:33][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][doGet][SAML2 Single Sign-On Service received GET request.]

[10/16/2014][09:30:33][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][FWSBase.java][doRequestLog][Requesting Host: 192.168.142.144 Requesting Host IP: 192.168.142.144 Request protocol: HTTP/1.1 Request was secure: false Authentication type: null]

[10/16/2014][09:30:33][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][doGet][Query String: AuthnResult=false]

[10/16/2014][09:30:33][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][getSavedRequestDataUsingGuid][Enter getSavedRequestDataUsingGuid]

[10/16/2014][09:30:33][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][getSavedRequestDataUsingGuid][Found cookie:GUID in the request.]

[10/16/2014][09:30:33][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][getSavedRequestDataUsingGuid][Cookie contents: 1:471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906]

[10/16/2014][09:30:33][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][getSavedRequestDataUsingGuid][GUID=471b6e48-0089f97e-ed867053-6020fee8-871c8c26-906]

[10/16/2014][09:30:33][1468][4036][][agentcommon][][Requesting data for ConfigManager ID C:\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/16/2014][09:30:33][1468][4036][][agentcommon][][Administration Manager is returning data for ConfigManager ID C:\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/16/2014][09:30:33][1468][3212][][CustomPostPageCache][performUpdate][Checking for updates]

[10/16/2014][09:30:33][1468][3212][][CustomPostPageCache][performUpdate][No custom pages cached.]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SAMLTunnelClient.java][removeRequestInfo][Tunnel result code: 1.]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SAMLTunnelClient.java][removeRequestInfo][Response status code: 0.]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][getSavedRequestDataUsingGuid][Request info from expiry table={IsPostBinding=true, IsPostAuthnRequest=false, SAMLRequest=fVDLboMwELznK5DvwQ9MiC1AipRLpFaKQtVDL5WxjYJqbMqaPv6+bnpoT93DHFazM7NTH9Z49Rf7ulqI2THB6FUcg2/QNcZZYnyhrGTdmeYv1rnPXIcJq2F4tz3Y5W3UFvC89m7UGNTkGEBA2enYoGeje2P4rhDG7gwpq2K/t4L3hotKD6aoBCM8UQFWe/IQlY8NYoTyLSVbWj4wJgsiGX9C2aNd4JaI5QRlH5Pz0KB18TIoGEF6NVmQUcvucH8nE0fOS4hBB4faTZam9kDlzWj5uZZp8b+CgvTddw2odcEQxkV3rvGvTrup8d/m2i8=, QueryString=SAMLRequest=fVDLboMwELznK5DvwQ9MiC1AipRLpFaKQtVDL5WxjYJqbMqaPv6%2BbnpoT93DHFazM7NTH9Z49Rf7ulqI2THB6FUcg2%2FQNcZZYnyhrGTdmeYv1rnPXIcJq2F4tz3Y5W3UFvC89m7UGNTkGEBA2enYoGeje2P4rhDG7gwpq2K%2Ft4L3hotKD6aoBCM8UQFWe%2FIQlY8NYoTyLSVbWj4wJgsiGX9C2aNd4JaI5QRlH5Pz0KB18TIoGEF6NVmQUcvucH8nE0fOS4hBB4faTZam9kDlzWj5uZZp8b%2BCgvTddw2odcEQxkV3rvGvTrup8d%2Fm2i8%3D&RelayState=dccbb820fd0027c92b6fc4a63c30dd88897b3c3b, RelayState=dccbb820fd0027c92b6fc4a63c30dd88897b3c3b}]

[10/16/2014][09:30:34][1468][4036][][agentcommon][][Requesting data for ConfigManager ID C:\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/16/2014][09:30:34][1468][4036][][agentcommon][][Administration Manager is returning data for ConfigManager ID C:\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][getSavedRequestDataUsingGuid][Deleting cookie: GUID from the browser.]

[10/16/2014][09:30:34][1468][4036][][DelegatedAuthHelper][getCookie][Cookie Name: GUID]

[10/16/2014][09:30:34][1468][4036][][DelegatedAuthHelper][getCookie][Cookie Name: SMLOCALE]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][getAuthnRequestData][AuthnRequest: <AuthnRequest Destination="http://R1252SP1.kelly.com/affwebservices/public/saml2sso" ID="_dcbdd4639de6d057388e94bd497cfd379204" IssueInstant="2014-10-15T22:30:24Z" Version="2.0" xmlns="urn:oasis:names:tc:SAML:2.0:protocol">

    <ns1:Issuer xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion">lod0249SP</ns1:Issuer>

</AuthnRequest>]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][getAuthnRequestDataCommon][RequestID: _dcbdd4639de6d057388e94bd497cfd379204]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][getAuthnRequestDataCommon][RequestID _dcbdd4639de6d057388e94bd497cfd379204 maps to TransactionID: 140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d.]

[10/16/2014][09:30:34][1468][4036][][agentcommon][][Requesting data for ConfigManager ID C:\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/16/2014][09:30:34][1468][4036][][agentcommon][][Administration Manager is returning data for ConfigManager ID C:\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][processRequest][Reading SAML 2.0 SP Configuration [CHECKPOINT = SSOSAML2_SPCONFREAD_REQ]]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SAML2Base.java][getServiceProviderInfo][Trying to fetch SAML2.0 SP Configuration from cache [CHECKPOINT = SAML2_SPCONFFROMCACHE_REQ]]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SAML2Base.java][getServiceProviderInfo][Obtained service provider information from cache for: lod0249SP.]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SAML2Base.java][getServiceProviderInfo][Obtained service provider information from cache for: lod0249SP.]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][processRequest][ProviderID: lod0249SP]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][processRequest][IsPassive: false]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][processRequest][ForceAuthn: false]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][processRequest][isSetAssertionConsumerServiceIndex: false]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][processRequest][AssertionConsumerServiceIndex: 0]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][processRequest][RelayState: dccbb820fd0027c92b6fc4a63c30dd88897b3c3b]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][processRequest][authResult: false]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][generateNegativeAssertion][Enter generateNegativeAssertion]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][generateNegativeAssertion][Negative assertions are enabled.]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][generateNegativeAssertion][Generating assertion-less response]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SAMLTunnelClient.java][signSAMLResponse][Provider ID: 21-9d2a8dd0-757c-4807-9dc2-a754a4e3524a.]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SAMLTunnelClient.java][signSAMLResponse][SAML Response: <?xml version="1.0" encoding="UTF-8" standalone="yes"?>

<Response ID="_aab7835adc09116ecd6475e4726022fffff2" InResponseTo="_dcbdd4639de6d057388e94bd497cfd379204" IssueInstant="2014-10-16T09:30:34.037+11:00" Version="2.0" xmlns="urn:oasis:names:tc:SAML:2.0:protocol"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion">R1252SP1IdP</ns1:Issuer><Status><StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Responder"><StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:AuthnFailed"/></StatusCode></Status></Response>

 

.]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SAMLTunnelClient.java][signSAMLResponse][Response ID: _aab7835adc09116ecd6475e4726022fffff2.]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SAMLTunnelClient.java][signSAMLResponse][Binding Type: 0.]

[10/16/2014][09:30:34][1468][4036][][agentcommon][][Requesting data for ConfigManager ID C:\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/16/2014][09:30:34][1468][4036][][agentcommon][][Administration Manager is returning data for ConfigManager ID C:\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/16/2014][09:30:34][1468][3120][][agentcommon][][The Configuration Management thread is calling doManagement()]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SAMLTunnelClient.java][signSAMLResponse][Tunnel result code: 1.]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][sendPOSTBindingNoPassiveResponse][SAMLResponse: <?xml version="1.0" encoding="UTF-8" standalone="yes"?>

<Response ID="_aab7835adc09116ecd6475e4726022fffff2" InResponseTo="_dcbdd4639de6d057388e94bd497cfd379204" IssueInstant="2014-10-16T09:30:34.037+11:00" Version="2.0" xmlns="urn:oasis:names:tc:SAML:2.0:protocol"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion">R1252SP1IdP</ns1:Issuer><Status><StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Responder"><StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:AuthnFailed"/></StatusCode></Status></Response>

 

]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][getACSURLFromSSORequestContext][Using the Default Assertion Consumer Service URL http://lod0249.lod.ca.com/affwebservices/public/saml2assertionconsumer]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][sendSAMLResponse][AssertionConsumerURL: http://lod0249.lod.ca.com/affwebservices/public/saml2assertionconsumer]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][sendSAMLResponse][SAML2 Single Sign-On Service sending SAML Response: <?xml version="1.0" encoding="UTF-8" standalone="yes"?>

<Response ID="_aab7835adc09116ecd6475e4726022fffff2" InResponseTo="_dcbdd4639de6d057388e94bd497cfd379204" IssueInstant="2014-10-16T09:30:34.037+11:00" Version="2.0" xmlns="urn:oasis:names:tc:SAML:2.0:protocol"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion">R1252SP1IdP</ns1:Issuer><Status><StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Responder"><StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:AuthnFailed"/></StatusCode></Status></Response>

 

.]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][sendSAMLResponse][SAML2 Single Sign-On Service sending base64 SAML Response: PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiIHN0YW5kYWxvbmU9InllcyI/Pgo8

 

UmVzcG9uc2UgSUQ9Il9hYWI3ODM1YWRjMDkxMTZlY2Q2NDc1ZTQ3MjYwMjJmZmZmZjIiIEluUmVz

 

cG9uc2VUbz0iX2RjYmRkNDYzOWRlNmQwNTczODhlOTRiZDQ5N2NmZDM3OTIwNCIgSXNzdWVJbnN0

 

YW50PSIyMDE0LTEwLTE2VDA5OjMwOjM0LjAzNysxMTowMCIgVmVyc2lvbj0iMi4wIiB4bWxucz0i

 

dXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wOnByb3RvY29sIj48bnMxOklzc3VlciBGb3JtYXQ9

 

InVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDpuYW1laWQtZm9ybWF0OmVudGl0eSIgeG1sbnM6

 

bnMxPSJ1cm46b2FzaXM6bmFtZXM6dGM6U0FNTDoyLjA6YXNzZXJ0aW9uIj5SMTI1MlNQMUlkUDwv

 

bnMxOklzc3Vlcj48U3RhdHVzPjxTdGF0dXNDb2RlIFZhbHVlPSJ1cm46b2FzaXM6bmFtZXM6dGM6

 

U0FNTDoyLjA6c3RhdHVzOlJlc3BvbmRlciI+PFN0YXR1c0NvZGUgVmFsdWU9InVybjpvYXNpczpu

 

YW1lczp0YzpTQU1MOjIuMDpzdGF0dXM6QXV0aG5GYWlsZWQiLz48L1N0YXR1c0NvZGU+PC9TdGF0

 

dXM+PC9SZXNwb25zZT4KCg==.]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][sendSAMLResponse][SAML2 Single Sign-On Service sending Relay State: dccbb820fd0027c92b6fc4a63c30dd88897b3c3b.]

[10/16/2014][09:30:34][1468][4036][140d9a8f-6b9a203d-1c24207b-5f84c42e-d00b0f45-fb7d][SSO.java][sendSAMLResponse][Browser posting the response to assertion consumer url [CHECKPOINT = SSOSAML2_POSTASSERTIONTOCONSUMERURL_RSP]]

[10/16/2014][09:30:34][1468][4036][][FWSBase.java][sendPostData][Adding response in form for http post [CHECKPOINT = FWSBASE_POSTDATAFORM_ADD]]

[10/16/2014][09:30:34][1468][4036][17047616-1e53fd5a-2d25ae00-7f3bb917-980af831-86e4][ForwardService][redirectPerProtocol][Redirecting to saml2sso]

 

SP:

[10/15/2014][18:30:24][5200][12200][][agentcommon][][Requesting data for ConfigManager ID C:\Program Files\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\Program Files\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/15/2014][18:30:24][5200][12200][][agentcommon][][Administration Manager is returning data for ConfigManager ID C:\Program Files\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\Program Files\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][doGet][SAML2 AuthnRequest Service received GET request.]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][FWSBase.java][doRequestLog][Requesting Host: 155.35.245.188 Requesting Host IP: 155.35.245.188 Request protocol: HTTP/1.1 Request was secure: false Authentication type: null]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][processRequest][SAML2 AuthnRequest Service received GET request.]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][processRequest][ProviderID: R1252SP1IdP]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][processRequest][RelayState: null]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][processRequest][ProtocolBinding: null]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][processRequest][AssertionConsumerServiceIndex: null]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][processRequest][ForceAuthn: false]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][processRequest][IsPassive: false]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][processRequest][AllowCreate query parameter: null]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][processRequest][AllowCreate query parameter is not present in the request. Will use the configuration value]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][processRequest][RequestID: d05d2ef1-5013e2bd-707992e0-bcab60ed-45dcdb9d-813]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][processRequest][RequestID d05d2ef1-5013e2bd-707992e0-bcab60ed-45dcdb9d-813 maps to TransactionID: 1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8.]

[10/15/2014][18:30:24][5200][12200][][agentcommon][][Requesting data for ConfigManager ID C:\Program Files\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\Program Files\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/15/2014][18:30:24][5200][12200][][agentcommon][][Administration Manager is returning data for ConfigManager ID C:\Program Files\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\Program Files\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][processRequest][Reading SAML 2.0 IDP Configuration [CHECKPOINT = SSOSAML2_IDPCONFREAD_REQ]]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][SAML2Base.java][getIdentityProviderInfo][Trying to fetch SAML2.0 IDP Configuration from cache [CHECKPOINT = SSOSAML2_IDPCONFFROMCACHE_REQ]]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][SAML2Base.java][getIdentityProviderInfo][Obtained identity provider information from cache for: R1252SP1IdP.]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][parseRequestForECP][Accept: image/jpeg, image/gif, image/pjpeg, application/x-ms-application, application/xaml+xml, application/x-ms-xbap, */*]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][parseRequestForPost][Post specified in Query: false]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][parseRequestForPost][Post configured: false]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][parseRequestForPost][Redirect configured: true]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][parseRequestForPost][Returning Post Specified: false]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][processRequest][Get Authentication request from policy server [CHECKPOINT = SSOSAML2_GETAUTHENTICATIONREQFROMPS_REQ]]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][SAMLTunnelClient.java][getAuthnRequest][Provider ID: R1252SP1IdP.]

[10/15/2014][18:30:24][5200][12200][][agentcommon][][Requesting data for ConfigManager ID C:\Program Files\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\Program Files\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/15/2014][18:30:24][5200][12200][][agentcommon][][Administration Manager is returning data for ConfigManager ID C:\Program Files\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\Program Files\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][SAMLTunnelClient.java][getAuthnRequest][Tunnel result code: 1.]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][processRequest][inResponseTo:dccbb820fd0027c92b6fc4a63c30dd88897b3c3b]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][processRequest][AuthnRequest: SAMLRequest=fVDLboMwELznK5DvwQ9MiC1AipRLpFaKQtVDL5WxjYJqbMqaPv6%2BbnpoT93DHFazM7NTH9Z49Rf7ulqI2THB6FUcg2%2FQNcZZYnyhrGTdmeYv1rnPXIcJq2F4tz3Y5W3UFvC89m7UGNTkGEBA2enYoGeje2P4rhDG7gwpq2K%2Ft4L3hotKD6aoBCM8UQFWe%2FIQlY8NYoTyLSVbWj4wJgsiGX9C2aNd4JaI5QRlH5Pz0KB18TIoGEF6NVmQUcvucH8nE0fOS4hBB4faTZam9kDlzWj5uZZp8b%2BCgvTddw2odcEQxkV3rvGvTrup8d%2Fm2i8%3D&RelayState=dccbb820fd0027c92b6fc4a63c30dd88897b3c3b]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][processRequest][RelayState: dccbb820fd0027c92b6fc4a63c30dd88897b3c3b]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][processRequest][SSO Default Service: http://R1252SP1.kelly.com/affwebservices/public/saml2sso]

[10/15/2014][18:30:24][5200][12200][1659df86-238ee9e6-84251091-b619377f-ba31faaa-1b8][AuthnRequest.java][processRequest][SAML2 AuthnRequestService redirecting to SSO URL: [CHECKPOINT = SSOSAML2_SSOURL_REDIRECT]]

[10/15/2014][18:30:33][5200][5304][][CustomPostPageCache][performUpdate][Checking for updates]

[10/15/2014][18:30:33][5200][5304][][CustomPostPageCache][performUpdate][No custom pages cached.]

[10/15/2014][18:30:34][5200][12200][][agentcommon][][Requesting data for ConfigManager ID C:\Program Files\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\Program Files\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/15/2014][18:30:34][5200][12200][][agentcommon][][Administration Manager is returning data for ConfigManager ID C:\Program Files\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\Program Files\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/15/2014][18:30:34][5200][12200][11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696][AssertionConsumer.java][doPost][SAML2 AssertionConsumer Service received POST request.]

[10/15/2014][18:30:34][5200][12200][11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696][FWSBase.java][doRequestLog][Requesting Host: 155.35.245.188 Requesting Host IP: 155.35.245.188 Request protocol: HTTP/1.1 Request was secure: false Authentication type: null]

[10/15/2014][18:30:34][5200][12200][11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696][AssertionConsumer.java][doPost][Obtained response message from post data for http post binding [CHECKPOINT = SSOSAML2_READRESPONSEPOSTDATA_RSP]]

[10/15/2014][18:30:34][5200][12200][11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696][AssertionConsumer.java][createPostRequestContext][SAMLResponse parameter (base-64 encoded): PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiIHN0YW5kYWxvbmU9InllcyI/Pgo8

 

UmVzcG9uc2UgSUQ9Il9hYWI3ODM1YWRjMDkxMTZlY2Q2NDc1ZTQ3MjYwMjJmZmZmZjIiIEluUmVz

 

cG9uc2VUbz0iX2RjYmRkNDYzOWRlNmQwNTczODhlOTRiZDQ5N2NmZDM3OTIwNCIgSXNzdWVJbnN0

 

YW50PSIyMDE0LTEwLTE2VDA5OjMwOjM0LjAzNysxMTowMCIgVmVyc2lvbj0iMi4wIiB4bWxucz0i

 

dXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wOnByb3RvY29sIj48bnMxOklzc3VlciBGb3JtYXQ9

 

InVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDpuYW1laWQtZm9ybWF0OmVudGl0eSIgeG1sbnM6

 

bnMxPSJ1cm46b2FzaXM6bmFtZXM6dGM6U0FNTDoyLjA6YXNzZXJ0aW9uIj5SMTI1MlNQMUlkUDwv

 

bnMxOklzc3Vlcj48U3RhdHVzPjxTdGF0dXNDb2RlIFZhbHVlPSJ1cm46b2FzaXM6bmFtZXM6dGM6

 

U0FNTDoyLjA6c3RhdHVzOlJlc3BvbmRlciI+PFN0YXR1c0NvZGUgVmFsdWU9InVybjpvYXNpczpu

 

YW1lczp0YzpTQU1MOjIuMDpzdGF0dXM6QXV0aG5GYWlsZWQiLz48L1N0YXR1c0NvZGU+PC9TdGF0

 

dXM+PC9SZXNwb25zZT4KCg==]

[10/15/2014][18:30:34][5200][12200][][agentcommon][][Requesting data for ConfigManager ID C:\Program Files\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\Program Files\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/15/2014][18:30:34][5200][12200][][agentcommon][][Administration Manager is returning data for ConfigManager ID C:\Program Files\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\Program Files\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/15/2014][18:30:34][5200][12200][11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696][AssertionConsumer.java][processSAMLResponse][SAMLResponse: <?xml version="1.0" encoding="UTF-8" standalone="yes"?>

<Response ID="_aab7835adc09116ecd6475e4726022fffff2" InResponseTo="_dcbdd4639de6d057388e94bd497cfd379204" IssueInstant="2014-10-16T09:30:34.037+11:00" Version="2.0" xmlns="urn:oasis:names:tc:SAML:2.0:protocol"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion">R1252SP1IdP</ns1:Issuer><Status><StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Responder"><StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:AuthnFailed"/></StatusCode></Status></Response>]

[10/15/2014][18:30:34][5200][12200][11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696][AssertionConsumer.java][processSAMLResponse][RelayState: dccbb820fd0027c92b6fc4a63c30dd88897b3c3b]

[10/15/2014][18:30:34][5200][12200][11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696][AssertionConsumer.java][processSAMLResponse][RequestID: _aab7835adc09116ecd6475e4726022fffff2]

[10/15/2014][18:30:34][5200][12200][11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696][AssertionConsumer.java][processSAMLResponse][ResponseID: _aab7835adc09116ecd6475e4726022fffff2]

[10/15/2014][18:30:34][5200][12200][11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696][AssertionConsumer.java][processSAMLResponse][RequestID _aab7835adc09116ecd6475e4726022fffff2 maps to TransactionID: 11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696.]

[10/15/2014][18:30:34][5200][12200][11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696][AssertionConsumer.java][processSAMLResponse][InResponseTo before digest:  _dcbdd4639de6d057388e94bd497cfd379204

]

[10/15/2014][18:30:34][5200][12200][11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696][AssertionConsumer.java][processSAMLResponse][InResponseTo after digest:  dccbb820fd0027c92b6fc4a63c30dd88897b3c3b

]

[10/15/2014][18:30:34][5200][12200][11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696][AssertionConsumer.java][processSAMLResponse][SAML response contains error status code of: urn:oasis:names:tc:SAML:2.0:status:Responder]

[10/15/2014][18:30:34][5200][12200][11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696][AssertionConsumer.java][processSAMLResponse][Ending SAML2 AssertionConsumer Service request processing with HTTP error 400]

[10/15/2014][18:30:34][5200][12200][11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696][SAML2Base.java][getIdentityProviderInfo][Trying to fetch SAML2.0 IDP Configuration from cache [CHECKPOINT = SSOSAML2_IDPCONFFROMCACHE_REQ]]

[10/15/2014][18:30:34][5200][12200][11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696][SAML2Base.java][getIdentityProviderInfo][Obtained identity provider information from cache for: R1252SP1IdP.]

[10/15/2014][18:30:34][5200][12200][11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696][AssertionConsumer.java][processSAMLResponse][Transaction with ID: 11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696 failed. Reason: ACS_SAML_RESPONSE_ERROR]

[10/15/2014][18:30:34][5200][12200][][agentcommon][][Requesting data for ConfigManager ID C:\Program Files\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\Program Files\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/15/2014][18:30:34][5200][12200][][agentcommon][][Administration Manager is returning data for ConfigManager ID C:\Program Files\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\Program Files\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/15/2014][18:30:34][5200][12200][][agentcommon][][Requesting data for ConfigManager ID C:\Program Files\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\Program Files\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/15/2014][18:30:34][5200][12200][][agentcommon][][Administration Manager is returning data for ConfigManager ID C:\Program Files\CA\webagent\win64\config\SmHost.conf and SmAgentConfig ID C:\Program Files\CA\webagent\win64\bin\IIS\WebAgent.conf]

[10/15/2014][18:30:34][5200][12200][11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696][ErrorRedirectionHandler.java][redirectToErrorPage][Sending HTTP Error 400 ]

[10/15/2014][18:30:34][5200][12200][11c08f7f-abce5341-0499a143-897f1f7a-45781113-5696][AssertionConsumer.java][doPost][

   processSAMLResponse TIME: 47ms]