Guest

Preview Tool

Cisco Bug: CSCvv50032 - SSO auth errors, exception: Error determining metadata contracts

Last Modified

Oct 03, 2020

Products (1)

  • Cisco SD-WAN

Known Affected Releases

20.1.2

Description (partial)

Symptom:
After upgrade, SSO authentication fails
Local auth work

Exceptions seen at server logs:
SAMLProcessingFilter] (default task-242) |default| Error determining metadata contracts: org.opensaml.saml2.metadata.provider.MetadataProviderException: Metadata for entity XXX  and role {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor wasn't found
        at com.viptela.vmanage.server.sso.saml.context.SAMLContextProviderImpl.populateLocalEntity(SAMLContextProviderImpl.java:342) [classes:]
        at com.viptela.vmanage.server.sso.saml.context.SAMLContextProviderImpl.populateLocalContext(SAMLContextProviderImpl.java:228) [classes:]
        at com.viptela.vmanage.server.sso.saml.context.SAMLContextProviderImpl.getLocalEntity(SAMLContextProviderImpl.java:114) [classes:]
        at com.viptela.vmanage.server.sso.saml.SAMLProcessingFilter.doFilter(SAMLProcessingFilter.java:166) [classes:]
        at io.undertow.servlet.core.ManagedFilter.doFilter(ManagedFilter.java:61) [undertow-servlet-1.4.0.Final.jar:1.4.0.Final]
        at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:131) [undertow-servlet-1.4.0.Final.jar:1.4.0.Final]
        at io.undertow.servlet.handlers.FilterHandler.handleRequest(FilterHandler.java:84) [undertow-servlet-1.4.0.Final.jar:1.4.0.Final]
        at io.undertow.servlet.handlers.security.ServletSecurityRoleHandler.handleRequest(ServletSecurityRoleHandler.java:62) [undertow-servlet-1.4.0.Final.jar:1.4.0.Final]

Conditions:
SSO in use
Cluster
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.