Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

saml sign assertion

Go to solution
iam01
Regular Contributor
Regular Contributor

‎12/15/2023 10:37 PM

Hi Team,

When we enable the sign assertion option in identity providers, do we need to import IDP certificates? If so, where? Is there any reference documentation?

It appears that uploading the metadata.xml file is sufficient, based on the documentation.

Version 23.9

Q2:

The saml sso configuration can be deactivated and activated several times and still work right. We tested the saml sso a few weeks ago after successful authentication. We disabled it with the idea that we could enable it at golive time, but when we enabled it, user authenticated at idp and failed at saviynt.

Labels:
0 Kudos
7 REPLIES 7

Go to solution
DixshantValecha
Saviynt Employee
Saviynt Employee

‎12/19/2023 02:02 AM

Hi @iam01,

We are checking on your request and we will keep you posted.

0 Kudos

Go to solution
DixshantValecha
Saviynt Employee
Saviynt Employee

‎12/21/2023 12:50 AM

Hi @iam01,

Q1- Yes,right uploading the metadata.xml file is sufficient, based on the documentation mentioned below.

https://docs.saviyntcloud.com/bundle/EIC-Admin-v23x/page/Content/Chapter06-EIC-Configurations/Config...

Q2.The saml sso configuration can be deactivated and activated several times and still work right. We tested the saml sso a few weeks ago after successful authentication. We disabled it with the idea that we could enable it at golive time, but when we enabled it, user authenticated at idp and failed at saviynt.

>For this we require the error logs for further triage.

0 Kudos

Go to solution
iam01
Regular Contributor
Regular Contributor

‎12/21/2023 04:54 AM

Hi ,

When we faced the issues with sso, I requested support to revert back. They took around 4 hours to revert back and when I checked the logs all I see is reverted info nothing related to sso.

0 Kudos

Go to solution
DixshantValecha
Saviynt Employee
Saviynt Employee

‎12/22/2023 05:44 AM

Hi @iam01,

Please inform me whether the issue persists in your environment or if it has been remediated.

0 Kudos

Go to solution
iam01
Regular Contributor
Regular Contributor

‎12/22/2023 08:14 AM

@DixshantValecha  I will renable the sso on Jan second week. Will keep you posted.

 

One more QQ, when ever sso fails, can we request support to capture the logs before they revert changes? The reason is we are unable to see any logs related to sso afterwards.

0 Kudos

Go to solution
DixshantValecha
Saviynt Employee
Saviynt Employee
In response to iam01

‎12/26/2023 03:18 AM

Hi @iam01,

Thanks for the update.For your second question I will check internally and provide you the required details.

 

 

0 Kudos

Go to solution
DixshantValecha
Saviynt Employee
Saviynt Employee

‎12/27/2023 03:48 AM

Hi @iam01,

Upon verification with our support team, it has been affirmed that customers are permitted to request logs for additional analysis purposes.

0 Kudos
Copyright © 2024 Khoros, LLC