Federated Identity Management Module 3.0
Microsoft Windows Windows Server SP1
SAML
SAML 2.0
{date}{time},672, (SSOProfileBean.java:2467), FIMDEMO02, , , , Unable to process the Response message, com.rsa.fim.saml.SAMLException
IDP unsolicited login
An example response that was sent to the SP service that could cause this exception:
<samlp:Status>
<samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Requester">
<samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:InvalidNameIDPolicy" />
</samlp:StatusCode>
* SAML core specification is located at URL http://docs.oasis-open.org/security/saml/v2.0/saml-core-2.0-os.pdf
When the IDP service (partner) responds with a status other than ?Success? (that is, ?Requester? or ?Responder?) it indicates that the operation failed (refer to lines 1634-1645 of saml-core-2.0-os.pdf).
Throwing an exception is the expectd response as in this case the partner is saying that the requester requested an invalid NameIDPolicy. The NameIDPolicy is only used in the AuthnRequest of an SP-initiated SSO (refer to lines 2025-2028 and 2130-2132 of saml-core-2.0-os.pdf).
In IdP-initiated (Tivoli calls it "push") SSO there is no AuthnRequest and therefore not NameIDPolicy, hence the operation failed with the exception.
Federated Identity Management Module 3.0 configured as the IDP
Related Articles
Attributes are missing from the SAML response sent by the RSA SecurID Access Identity Router to Microsoft AD FS 46Number of Views The RSA SecurID Access Cloud Authentication Service rejects signed SP-initiated SAML requests with an HTTP Redirect binding 369Number of Views RSA Identity Governance & Lifecycle aveksaServer.log file filling with warning messages "Logging event having message" and… 395Number of Views 'There was a problem processing your request' error when attempting to delete expired tokens in RSA Authentication Manager… 456Number of Views Add a SAML Application 144Number of Views
Trending Articles
RSA Authentication Manager 8.9 Release Notes (January 2026) RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA-2026-07: RSA Authentication Manager Security Update for Third-Party Component Vulnerabilities Downloading RSA Authentication Manager license files or RSA Software token seed records RSA MFA Agent 2.5 for Microsoft Windows Installation and Administration Guide