000022659 - How to import SAML configurations in RSA Federated Identity Manager (FIM)

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000022659
Applies ToRSA Federated Identity Manager (FIM) 2.5
Sun Solaris 2.8
IssueHow to import SAML configurations in RSA Federated Identity Manager (FIM)
When completing an import of a SAML configuration .XML file, the import operation fails with:

java.lang.IllegalStateException: Encryption Key is required, Exception occurred when getting EK
        at com.rsa.csf.techservice.datastore.QueryGenerator.decryptObject(Unknown Source)
        at com.rsa.csf.techservice.datastore.QueryGenerator.convertToStrongType(Unknown Source)
        at com.rsa.csf.techservice.datastore.QueryGenerator.convertField(Unknown Source)
        at com.rsa.csf.techservice.datastore.QueryGenerator.convertResult(Unknown Source)
        at com.rsa.csf.techservice.datastore.PersistenceService.retrieve(Unknown Source)
        at com.rsa.csf.techservice.datastore.PersistableObjectCache.loadDomainObject(Unknown Source)
        at com.rsa.csf.techservice.datastore.PersistableObjectCache.loadCache(Unknown Source)
        at com.rsa.csf.techservice.datastore.PersistableObjectCache.init(Unknown Source)
        at com.rsa.csf.techservice.datastore.PersistableObjectCache.get(Unknown Source)
        at com.rsa.csf.techservice.datastore.PersistenceService.fetch(Unknown Source)
        at com.rsa.csf.techservice.datastore.PersistenceService.fetch(Unknown Source)
        at com.rsa.csf.techservice.datastore.configuration.saml.PersistSvcWrapperImpl.fetch(Unknown Source)
        at com.rsa.csf.techservice.datastore.configuration.saml.SamlDOConfiguration.deleteSamlDomainObjects(Unknown Source)
        at com.rsa.csf.techservice.datastore.configuration.saml.SamlDOConfiguration.deconstructCfgRoot(Unknown Source)
        at com.rsa.csf.techservice.datastore.configuration.saml.SamlDOConfiguration.configure(Unknown Source)
        at com.rsa.csf.techservice.datastore.configuration.common.SetSamlConfigCommand.execute(Unknown Source)
        at com.rsa.csf.techservice.datastore.configuration.ConfigTool.main(Unknown Source)
Error executing: SETSAMLCONFIG
Reason: SAML domain object configuration error.
CauseThere is a mismatch between the imported RSA Federated Identity Manager (FIM) secrets file and the incoming SAML configuration data.
ResolutionTo correct this issue, ensure that the RSA Federated Identity Manager (FIM) secrets file imported is that which is associated to the incoming SAML configuration data file. Complete the import of the secrets file first and then the associated SAML configuration data file.
Legacy Article IDa29737

Attachments

    Outcomes