SAML not working

Document ID : KB000072303
Last Modified Date : 01/03/2018
Show Technical Document Details
Issue:
  After configuring SAML for APM for this first time in certain builds or patching with a hotfix, SAML for the workstation does not work.
Environment:
  This impacts APM Workstation component only on 10.5.1.x and 10.5.2.x.
Cause:
  Specific Java security rules prevent the launch of Java webstart as well utilizing SAML security.  If not configured correctly, these features will prevent the launch and SAML login of Java components like Webstart.
Resolution:
  The workstation.jsp file located under product/enterprisemanager/plugins/com.wily.introscope.workstation.webstart_10.5.1/WebContent/jnlp contains a line that is very sensitive. 

  This line is <jnlp codebase="<%= codeBase%>" href="workstation.jnlp">
  • Without the href, java deployment rule sets may fail 
  • With the href SAML security, it will not work for the workstation so the href will need to be removed <jnlp codebase="<%= codeBase%>">
This is present in certain newer impacted builds and can also be added during a hotfix application.   

If a problem arises check your environment and settings to make sure you have the proper syntax.