InfoSeek
Reputation: 1
Shibboleth Integration with Entra ID
I am trying to integrate Microsoft Entra ID for MFA with a Web App, and so far have completed the cycle of MFA and got the session authenticated. However, post authentication when the redirection action happens from Shibboleth I am receiving the below error:
opensaml::SecurityPolicyException The system encountered an error at Thu Aug 1 14:57:03 2024 To report this problem, please contact the site administrator at root@localhost. Please include the following message in any email: opensaml::SecurityPolicyException at (https://DemoEntraIDIntegration/safeselfservice) Attempt to spoof header (HTTP_SHIBSESSIONID:) was detected.
Can anyone please help find the cause and address the header spoofing issue ?
- Ensured the Shibboleth Configurations are in place.
- Ensured the Attribute mapping is in the right order.
- Ensured that the right metadata is used and Reply URL is correctly configured.
- Tried to trace log information in IIS for the error - nothing could be found.
Upvotes: 0
Views: 176
Answers (0)
Related Questions
- SecurityError: Blocked a frame with origin from accessing a cross-origin frame
- How can I sanitize user input with PHP?
- How does a Shibboleth SP configure IdP metadata files without any downtime in the Shibboleth service?
- Shibboleth Attributes not Mapping
- Shibboleth SP ignores MetadataProvider
- Shibboleth integration
- Integration with Shibboleth using WIF
- understanding Shibboleth and SAML