Reputation: 53
Why spring-saml-extension and adfs 2.0 return a 403 error?
I don't know what am I missing about configuring spring-saml-extension and adfs. I did everything as mentioned in this guide, but IIS returns me a 403 forbidden error with this message:
You do not have permission to view this directory or page using the credentials that you supplied.
Is there anything else I need to do on IIS?
Upvotes: 0
Views: 811
Answers (1)
Reputation: 53
Well,
after hours researching about this I found what the problem was.
There is an ISAPI filter on
IIS -> Default Web Site
that was redirecting request to another place.
I got this by enabling httpErrors to DetailedMode:
C:\Windows\System32\inetsrv>appcmd.exe set config "Default Web Site" /section:httpErrors /errorMode:Detailed
Then, when I entered to /adfs/ls/idpinitiatedsignon.aspx, ISS throwed this screen: Http Error 403.18 - Forbidden
For more information about this, I would recomenend to see throbleshoot ISS errors like a pro
So, what I did was to remove that filter at
IIS -> Default Web Site -> ISAPI Filters
and it finally worked :)
Thanks @admdrew and @Vladimir for your help.
Upvotes: 1
Related Questions
- ADFS spring-saml No AssertionConsumerService is configured on the relying party
- How can I force spring-saml-extension to re-authenticate everytime?
- Spring SAML exception with Tomcat/ADFS integration
- Spring Security SAML extension ADFS
- Spring SAML Single Sign on ADFS Response failure because status message is null
- Issues while integrating ADFS with Spring SAML Extension
- ADFS refuse spring-saml metadata
- Configuring ADFS 3.0 / SAML 2.0 to work with Spring Security for SSO integration
- use of samlKeystore.jks in Spring SAML extension
- Spring SAML ADFS: java.security.InvalidKeyException