On multiple occasions our SSO application started failing with the below exception and gets resolved by app pool recycle.
Exception Type: ComponentSpace.SAML2.Exceptions.SAMLConfigurationException
Exception: An X.509 certificate for the partner service provider *** hasn’t been configured.
Stack Trace:
atComponentSpace.SAML2.SAMLController.GetPartnerServiceProviderCertificate(StringpartnerServiceProviderName)
at ComponentSpace.SAML2.InternalSAMLIdentityProvider.CreateSAMLResponse(StringuserName, SAMLAttribute[] attributes, Status status, String assertionConsumerServiceUrl)
at ComponentSpace.SAML2.InternalSAMLIdentityProvider.InitiateSSO(HttpResponsehttpResponse, String userName, SAMLAttribute[] attributes, String relayState,String partnerSP, String assertionConsumerServiceUrl)
We’re using SAML configuration file to define Partner Service Provider.
<PartnerServiceProvider
Name=“___ “
AssertionConsumerServiceUrl=”“
PartnerCertificateSerialNumber=””
WantAuthnRequestSigned=“true”
SignSAMLResponse=“true”
SignAssertion=“true”
EncryptAssertion=“true”
…
/>
Could you please enable SAML trace and send the generated log file as an email attachment to support@componentspace.com?
http://www.componentspace.com/Forums/17/Enabing-SAML-Trace
I’d like to see the certificate failing to load as well as successfully loading after recycling the app pool.
Thanks.