Salesforce SSO SAML验证

时间:2014-08-29 08:52:31

标签: salesforce single-sign-on

我正在为Salesforce SSO创建SAML断言。我使用OPEN SAML来创建断言。 我收到以下错误。请说明此问题的根本原因以及如何尽快解决此问题。

先谢谢。

结果

Last recorded SAML login failure:  2014-08-29T08:33:55.713Z
Unexpected Exceptions
  Ok
1. Validating the Status
  Ok
2. Looking for an Authentication Statement
  Ok
3. Looking for a Conditions statement
  Ok
4. Checking that the timestamps in the assertion are valid
  Ok
5. Checking that the Attribute namespace matches, if provided
  Not Provided
6. Miscellaneous format confirmations
  Ok
7. Confirming Issuer matches
  Ok
8. Confirming a Subject Confirmation was provided and contains valid timestamps
  Ok
9. Checking that the Audience matches, if provided
  Ok
10. Checking the Recipient
  Ok
11. Validating the Signature
  Is the response signed? false
  Is the assertion signed? true
  The reference in the assertion signature is valid
  Signature or certificate problems
  The signature in the assertion is not valid
  Is the correct certificate supplied in the keyinfo? false
12. Checking that the Site URL Attribute contains a valid site url, if provided
  Not Provided
13. Looking for portal and organization id, if provided
  Ok
14. Checking if session security level is valid, if provided
  Ok

1 个答案:

答案 0 :(得分:0)

嗯 - 表面上看起来你用一个密钥签署了你的断言,但它不是你提供给SFDC的那个,或者你在keyinfo中包含了错误的证书 -

Signature or certificate problems
The signature in the assertion is not valid
Is the correct certificate supplied in the keyinfo? false

只是在这一点猜测。提供的信息不足以给你一个可靠的答案。