000022293 - Error: 'Invalid Configuration. Relying Party configured to expect no attribute statements from Asserting Party.' in RSA Federated Identity Manager (FIM)

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000022293
Applies ToRSA Federated Identity Manager (FIM) 2.5
Microsoft Windows 2000 SP4
IssueError: "Invalid Configuration. Relying Party configured to expect no attribute statements from Asserting Party." in RSA Federated Identity Manager (FIM)
The following error appears in web browser:

Error 500 - Internal Server Error

The server encountered the following unexpected condition: Error in RSA Federated Identity Manager: Error encountered in Relying Party servlet: com.rsa.csf.common.exceptionbase.CsfApplicationException: Error in Relying Party while processing Asserting Party response: ;nested exception is: com.rsa.csf.techservice.saml.opensaml.SAMLException: Invalid Configuration. Relying Party configured to expect no attribute statements from Asserting Party "jacksonAP" but SAML assertion contained attribute statements.
CauseThis error appears when an AP system is configured to send attributes to a particular RP, but the RP is configured for no attributes
ResolutionOn the Web SSO pages for the trusted AP and trusted RP, do one of the following:

? Configure the AP to not send attributes

? Configure the RP as "may" or "must" allow attribute statements from the AP
Legacy Article IDa27863

Attachments

    Outcomes