Unlock a world of possibilities! Login now and discover the exclusive benefits awaiting you.
hi all
when generating SP metadata file in the virtual proxie created, i retrieve below values :
WantAssertionsSigned="true" AuthnRequestsSigned="true"
as i understand both should be "false" to enable SSO
when longing in recieve an error as below
why are they created as true ? and how can i change it ?
is in the creation of the IdP file in SF ?
any ideas ?
advanced thanks
Hello,
You do not need to change these for the SAML authentication to work.
In fact, even if you change them, it will be ignored by Qlik Sense, as Qlik Sense only supports signed SAML AuthnRequests.
As error 400 is a generic error, which just means that the SAML response sent by the IdP (Salesforce in this case) did not contain the correct information, it is hard to say what went wrong here.
If you look into the Qlik Sense Proxy Audit trace logs (C:\programdata\qlik\sense\logs\proxy\trace\servername_audit_proxy.txt), you should see a warning indicating what went wrong.
Once you found the error, you can search in our knowledge base if there is a resolution for it:
https://support.qlik.com/apex/QS_CoveoSearch#q=SAML&t=All&sort=relevancy
If you cannot find anything there, please provide the information in the article below so that I can take a look:
https://support.qlik.com/articles/000041558