000014495 - FIM- Import metadata with isDefault missing caused AttributeConsumingService to fail

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000014495
Applies ToFederated Identity Management Module 3.0
IssueFIM - Import metadata with isDefault missing caused AttributeConsumingService to fail
Attributes are not passed in the session causing application to fail. None of the attributes are requested by the SP.
CauseAP Partner metadata was exchanged and AttributeConsumingService isDefault was not set:

<md:AttributeConsumingService index="2">

ResolutionSet the isDefault tag:

<md:AttributeConsumingService index="2" isDefault="true">

Notes

According to SAML spec:
At most one <md:AttributeConsumingService> element can have the attribute isDefault set to true.
When multiple elements are specified and none has the attribute isDefault set to true, then the first element whose isDefault attribute is not set to false is to be used as the default.
If all elements have their isDefault attribute set to false, then the first element is considered the default.

isDefault [Optional]
Identifies the default service supported by the service provider. Useful if the specific service is not otherwise indicated by application context. If omitted, the value is assumed to be false.

 

Legacy Article IDa40902

Attachments

    Outcomes