SAMLv2
Table 10–11 Log Reference Document for SAML2LogMessageIDs|
Id |
Log Level |
Description |
Data |
Triggers |
Actions |
|---|---|---|---|---|---|
|
SAML2-1 |
INFO |
Invalid Service Provider Identifier |
Service Provider Entity Identifier |
Invalid Service Provider,cannot process request |
Check the Service Provider Name. |
|
SAML2-2 |
INFO |
Invalid Identity Provider Identifier |
Identity Provider Entity Identifier |
Invalid Identity Provider,cannot process request |
Check the Identity Provider Name. |
|
SAML2-3 |
INFO |
Unable to retreive Service Provider Metadata. |
Service Provider Entity Identifier |
Cannot retrieve Service Provider Metadata |
Check the Data Store is accessible . Check the Realm name. Check the Service Provider Entity Identifier. |
|
SAML2-4 |
INFO |
Unable to retrieve Identity Provider Metadata. |
Identity Provider Entity Identifier |
Cannot retreive Identity Provider Metadata |
Check the Data Store is accessible . Check the Realm name. Check the Identity Provider Entity Identifier. |
|
SAML2-5 |
INFO |
Unable to retrieve SingleSignOnService URL. |
Identity Provider Entity Identifier |
Error retreiving SingleSignOnService URL. |
Check the Data Store is accessible . Check the Realm name. Check the Identity Provider Entity Identifier. |
|
SAML2-6 |
INFO |
Redirecting to SingleSignOnService |
SingleSignOnService URL |
Sending Authentication Request by redirecting to Single SignOn Service URL. |
|
|
SAML2-7 |
INFO |
Unable to retrieve Response using Response ID after local login. |
Response ID |
Response doesn't exist in the SP cache. |
Check the SP cache clean up interval configuration. |
|
SAML2-8 |
INFO |
Unable to retrieve Artifact from HTTP Request. |
|
SAMLart is missing from HTTP Request |
Check with sender. Check web container server log. |
|
SAML2-9 |
INFO |
Received Artifact from HTTP Request. |
Artifact value |
Received Artifact from HTTP Request in the process of Single Sign On using Artifact Profile. |
|
|
SAML2-10 |
INFO |
Unable to find Identity Provider Entity ID based on the SourceID in Artifact. |
Artifact value Realm or organization name |
No matching Identity Provider Entity ID found in meta data configuration. |
Check if Identity Provider's meta data is loaded. |
|
SAML2-11 |
INFO |
Unable to load Identity Provider's meta data. |
Realm or organization name Identity Provider Entity ID |
Unable to load Identity Provider's meta data. |
Check Identity Provider Entity ID. Check Realm or organization name. Check if the identity provider's meta is loaded. |
|
SAML2-12 |
INFO |
Unable to find Identity Provider's Artifact resolution service URL. |
Identity Provider Entity ID |
Artifact resolution service URL is not defined in Identity Provider's metadata. |
Check Identity Provider's meta data. |
|
SAML2-13 |
INFO |
Unable to create ArtifactResolve. |
Hosted Service Provider Entity ID Artifact value |
Error when creating ArtifactResolve instance. |
Check implementation of ArtifactResolve. |
|
SAML2-14 |
INFO |
Unable to obtain response from SOAP communication with Identity Provider's artifact resolution service. |
Hosted Service Provider Entity ID Identity Provider's Artifact Resolution Service URL |
Error in SOAP communication. |
Check Identity Provider's Artifact Resolution Service URL. Check SOAP message authentication requirements for Identity Provider's Artifact Resolution Service. |
|
SAML2-15 |
INFO |
Obtained response using artifact profile. |
Hosted Service Provider Entity ID Remote Identity Provider Entity ID Artifact value Response xml String if the log level was set to LL_FINE at run time |
Single Sign On using Artifact Profile. |
|
|
SAML2-16 |
INFO |
Unable to obtain Artifact Response due to SOAP error. |
Identity Provider Entity ID |
Error in SOAP communication. |
Check configuration for Identity Provider |
|
SAML2-17 |
INFO |
Received SOAP Fault instead of Artifact Response. |
Identity Provider Entity ID |
Error in Identity Provider's Artifact Resolution. |
Check Identity Provider Check debug file for detailed fault info. |
|
SAML2-18 |
INFO |
Received too many Artifact Response. |
Identity Provider Entity ID |
Identity Provider sent more than one Artifact Response in SOAPMessage. |
Check Identity Provider |
|
SAML2-19 |
INFO |
Unable to instantiate Artifact Response. |
Identity Provider Entity ID |
Error while instantiating Artifact Response. |
Check Identity Provider Check debug message for detailed error. |
|
SAML2-20 |
INFO |
Unable to obtain Artifact Response from SOAP message. |
Identity Provider Entity ID |
No ArtifactResponse is included in SOAPMessage. |
Check Identity Provider |
|
SAML2-21 |
INFO |
Unable to verify signature on Artifact Response. |
Identity Provider Entity ID |
Error while trying to verify signature on ArtifactResponse. |
Check configuration for Identity Provider Check debug file for detailed info |
|
SAML2-22 |
INFO |
Invalid InResponseTo attribute in Artifact Response. |
Identity Provider Entity ID |
InResponseTo attribute in Artifact Response is missing or doesn't match with Artifact Resolve ID. |
Check with Identity Provider |
|
SAML2-23 |
INFO |
Invalid Issuer in Artifact Response. |
Identity Provider Entity ID |
Issuer in Artifact Response is missing or doesn't match with Identity Provider Entity ID. |
Check with Identity Provider |
|
SAML2-24 |
INFO |
Invalid status code in Artifact Response. |
Identity Provider Entity ID Status code if the log level was set to LL_FINE at runtime |
Status in Artifact Response is missing or status code is not Success. |
Check with Identity Provider |
|
SAML2-25 |
INFO |
Unable to instantiate Respones from Artifact Response. |
Identity Provider Entity ID |
Error occurred while instantiating Response. |
Check debug file for detailed error. |
|
SAML2-26 |
INFO |
SAML Response is missing from http post. |
|
Parameter SAMLResponse is missing from http POST. |
|
|
SAML2-27 |
INFO |
Unable to instantiate Response from POST. |
|
Error occurred while instantiating Response. |
Check debug file for more info |
|
SAML2-28 |
INFO |
Unable to decode Response. |
|
Error occurred while decoding Response. |
Check debug file for more info |
|
SAML2-29 |
INFO |
Obtained response using POST profile. |
Response xml String if the log level was set to LL_FINE at runtime |
Single Sign On using POST Profile. |
|
|
SAML2-30 |
INFO |
Written federation info. |
Username NameIDInfo value string if the log level was set to LL_FINE at runtime |
Federation is done. |
|
|
SAML2-31 |
INFO |
Redirect request to IDP. |
redirection url |
Single logout. |
|
|
SAML2-32 |
INFO |
Unable to find Assertion Consumer Service URL. |
meta alias |
Single Sign On. |
|
|
SAML2-33 |
INFO |
Unable to find return binding. |
meta alias |
Single Sign On. |
|
|
SAML2-34 |
INFO |
Unable to post the response to target. |
Assertion Consumer Service URL |
Single Sign On with POST binding. |
|
|
SAML2-35 |
INFO |
Unable to create an artifact. |
IDP entity ID |
Single Sign On with Artifact binding. |
|
|
SAML2-36 |
INFO |
Received AuthnRequest. |
SP entity ID IDP meta alias authnRequest xml string |
Single Sign On. |
|
|
SAML2-37 |
INFO |
Post response to SP. |
SP entity ID IDP meta alias response xml string |
Single Sign On with POST binding. |
|
|
SAML2-38 |
INFO |
Send an artifact to SP. |
IDP entity ID IDP realm redirect URL |
Single Sign On with Artifact binding. |
|
|
SAML2-39 |
INFO |
Encounter invalid SOAP message in IDP. |
IDP entity ID |
Single Sign On with Artifact binding. |
|
|
SAML2-40 |
INFO |
The artifact response being sent to SP. |
IDP entity ID artifact string artifact response |
Single Sign On with Artifact binding. |
|
|
SAML2-41 |
FINE |
Entity descriptor obtained. |
Entity ID Realm or organization name |
Obtain entity descriptor. |
|
|
SAML2-42 |
INFO |
Invaid realm while getting entity descriptor. |
Realm or organization name |
Obtain entity descriptor. |
Check the Realm name. |
|
SAML2-43 |
INFO |
Obtained invalid entity descriptor. |
Entity ID Realm or organization name |
Obtain entity descriptor. |
Delete invalid entity descriptor and import it again. |
|
SAML2-44 |
INFO |
Configuration error while getting entity descriptor. |
Error message Entity ID Realm or organization name |
Obtain entity descriptor. |
Check debug message for detailed error. |
|
SAML2-45 |
INFO |
No entity ID while setting entity descriptor. |
Realm or organization name |
Set entity descriptor. |
Set entity ID in entity descriptor. |
|
SAML2-46 |
INFO |
Invaid realm while setting entity descriptor. |
Realm or organization name |
Set entity descriptor. |
Check the Realm name. |
|
SAML2-47 |
INFO |
Entity descriptor doesn't exist while setting entity descriptor. |
Entity ID Realm or organization name |
Set entity descriptor. |
Create entity descriptor before set. |
|
SAML2-48 |
INFO |
Entity descriptor was set. |
Entity ID Realm or organization name |
Set entity descriptor. |
|
|
SAML2-49 |
INFO |
Configuration error while setting entity descriptor. |
Error message Entity ID Realm or organization name |
Set entity descriptor. |
Check debug message for detailed error. |
|
SAML2-50 |
INFO |
Invalid entity descriptor to set. |
Entity ID Realm or organization name |
Set entity descriptor. |
Check entity descriptor if it follows the schema. |
|
SAML2-51 |
INFO |
No entity ID while creating entity descriptor. |
Realm or organization name |
Create entity descriptor. |
Set entity ID in entity descriptor. |
|
SAML2-52 |
INFO |
Invaid realm while creating entity descriptor. |
Realm or organization name |
Create entity descriptor. |
Check the Realm name. |
|
SAML2-53 |
INFO |
Entity descriptor exists while creating entity descriptor. |
Entity ID Realm or organization name |
Create entity descriptor. |
Delete existing entity descriptor first. |
|
SAML2-54 |
INFO |
Entity descriptor was created. |
Entity ID Realm or organization name |
Create entity descriptor. |
|
|
SAML2-55 |
INFO |
Configuration error while creating entity descriptor. |
Error message Entity ID Realm or organization name |
Create entity descriptor. |
Check debug message for detailed error. |
|
SAML2-56 |
INFO |
Invalid entity descriptor to create. |
Entity ID Realm or organization name |
Create entity descriptor. |
Check entity descriptor if it follows the schema. |
|
SAML2-57 |
INFO |
Invaid realm while deleting entity descriptor. |
Realm or organization name |
Delete entity descriptor. |
Check the Realm name. |
|
SAML2-58 |
INFO |
Entity descriptor doesn't exist while deleting entity descriptor. |
Entity ID Realm or organization name |
Delete entity descriptor. |
|
|
SAML2-59 |
INFO |
Entity descriptor was deleted. |
Entity ID Realm or organization name |
Delete entity descriptor. |
|
|
SAML2-60 |
INFO |
Configuration error while deleting entity descriptor. |
Error message Entity ID Realm or organization name |
Delete entity descriptor. |
Check debug message for detailed error. |
|
SAML2-61 |
FINE |
Entity config obtained. |
Entity ID Realm or organization name |
Obtain entity config. |
|
|
SAML2-62 |
INFO |
Invaid realm while getting entity config. |
Realm or organization name |
Obtain entity config. |
Check the Realm name. |
|
SAML2-63 |
INFO |
Obtained invalid entity config. |
Entity ID Realm or organization name |
Obtain entity config. |
Delete invalid entity config and import it again. |
|
SAML2-64 |
INFO |
Configuration error while getting entity config. |
Error message Entity ID Realm or organization name |
Obtain entity config. |
Check debug message for detailed error. |
|
SAML2-65 |
INFO |
No entity ID while setting entity config. |
Realm or organization name |
Set entity config. |
Set entity ID in entity config. |
|
SAML2-66 |
INFO |
Invaid realm while setting entity config. |
Realm or organization name |
Set entity config. |
Check the Realm name. |
|
SAML2-67 |
INFO |
Entity config doesn't exist while setting entity config. |
Entity ID Realm or organization name |
Set entity config. |
Create entity descriptor before set entity config. |
|
SAML2-68 |
INFO |
Entity config was set. |
Entity ID Realm or organization name |
Set entity config. |
|
|
SAML2-69 |
INFO |
Configuration error while setting entity config. |
Error message Entity ID Realm or organization name |
Set entity config. |
Check debug message for detailed error. |
|
SAML2-70 |
INFO |
Invalid entity config to set. |
Entity ID Realm or organization name |
Set entity config. |
Check entity config if it follows the schema. |
|
SAML2-71 |
INFO |
No entity ID while creating entity config. |
Realm or organization name |
Create entity config. |
Set entity ID in entity config. |
|
SAML2-72 |
INFO |
Invaid realm while creating entity config. |
Realm or organization name |
Create entity config. |
Check the Realm name. |
|
SAML2-73 |
INFO |
Entity config doesn't exist while creating entity config. |
Entity ID Realm or organization name |
Create entity config. |
Create entity descriptor before create entity config. |
|
SAML2-74 |
INFO |
Entity config exists while creating entity config. |
Entity ID Realm or organization name |
Create entity config. |
Delete existing entity config first. |
|
SAML2-75 |
INFO |
Entity config was created. |
Entity ID Realm or organization name |
Create entity config. |
|
|
SAML2-76 |
INFO |
Configuration error while creating entity config. |
Error message Entity ID Realm or organization name |
Create entity config. |
Check debug message for detailed error. |
|
SAML2-77 |
INFO |
Invalid entity config to create. |
Entity ID Realm or organization name |
Create entity config. |
Check entity config if it follows the schema. |
|
SAML2-78 |
INFO |
Invaid realm while deleting entity config. |
Realm or organization name |
Delete entity config. |
Check the Realm name. |
|
SAML2-79 |
INFO |
Entity config doesn't exist while deleting entity config. |
Entity ID Realm or organization name |
Delete entity config. |
Check debug message for detailed error. |
|
SAML2-80 |
INFO |
Entity config was deleted. |
Entity ID Realm or organization name |
Delete entity config. |
|
|
SAML2-81 |
INFO |
Configuration error while deleting entity config. |
Error message Entity ID Realm or organization name |
Delete entity config. |
Check debug message for detailed error. |
|
SAML2-82 |
INFO |
Invaid realm while getting all hosted entities. |
Realm or organization name |
Get all hosted entities. |
Check the Realm name. |
|
SAML2-83 |
INFO |
Configuration error while getting all hosted entities. |
Error message Realm or organization name |
Get all hosted entities. |
Check debug message for detailed error. |
|
SAML2-84 |
FINE |
Obtained all hosted entities. |
Error message Realm or organization name |
Get all hosted entities. |
|
|
SAML2-85 |
INFO |
Invaid realm while getting all remote entities. |
Realm or organization name |
Get all remote entities. |
Check the Realm name. |
|
SAML2-86 |
INFO |
Configuration error while getting all remote entities. |
Error message Realm or organization name |
Get all remote entities. |
Check debug message for detailed error. |
|
SAML2-87 |
FINE |
Obtained all remote entities. |
Error message Realm or organization name |
Get all remote entities. |
|
|
SAML2-88 |
INFO |
InResponseTo attribute in Response is invalid. |
Response ID |
Service Provider received a Response for Single Sign On. |
Check debug message for detailed error. |
|
SAML2-89 |
INFO |
Issuer in Response is invalid. |
Hosted Entity ID Name of Realm or organization Response ID |
Issuer in Response is not configured or not trusted by the hosted provider |
Check configuration. |
|
SAML2-90 |
INFO |
Status code in Response was not Success. |
Response ID Status code (if log level is set to LL_FINE) |
Service provider received a Response with wrong Status code. Most likely an error occurred at Identity Provider. |
Check the status code. Contact Identity Provider if needed. |
|
SAML2-91 |
INFO |
Assertion in Response was not encrypted. |
Response ID |
Service provider requested the assertion in Response to be encrypted, but it received a Response with unencrypted assertion(s). |
Check configuration. Notify Identity Provider regarding the requirement. |
|
SAML2-92 |
INFO |
Response had no Assertion. |
Response ID |
Service provider received a Response for Single Sign On, but the response contained no Assertion. |
Check error code of the Response. Notify Identity Provider if needed. |
|
SAML2-93 |
INFO |
Issuer in Assertion is not valid. |
Assertion ID |
Issuer in Assertion for single sign on was not configured at service provider, or not trusted by the service provider. |
Check configuration |
|
SAML2-94 |
INFO |
Issuer in Assertion didn't match the Issuer in Response or other Assertions in the Response. |
Assertion ID |
Service provider received Response which had mismatch Issuer inside the Assertion it contained. |
Check debug message |
|
SAML2-95 |
INFO |
Assertion is not signed or signature is not valid. |
Assertion ID |
Service provider requested the Assertion to be signed but the assertion received was not; or the signature on the Assertion received was not valid. |
Check configuration; check debug for more detailed error message. |
|
SAML2-96 |
INFO |
SubjectConfirmationData had no Subject. |
Assertion ID |
Service provider received an Assertion whose SubjectConfirmationData had no Subject. |
Check debug for the Assertion received. Contact Identity Provider if needed. |
|
SAML2-97 |
INFO |
SubjectConfirmationData had no Recipient. |
Assertion ID |
Service provider received an Assertion whose SubjectConfirmationData had no Recipient. |
Check debug for the Assertion received. Contact Identity Provider if needed. |
|
SAML2-98 |
INFO |
Service Provider is not the intended recipient. |
Assertion ID |
Service provider received an Assertion. But the provider is not the intended recipient of the Assertion. |
Check debug for the Assertion received. Check meta data. Contact Identity Provider if needed. |
|
SAML2-99 |
INFO |
Time in SubjectConfirmationData of the Assertion is invalid. |
Assertion ID |
The assertion service provider received had expired timewise. |
Synchronize the time between service provider and identity provider. Increase the time skew attribute for the service provider in its entity config. |
|
SAML2-100 |
INFO |
SubjectConfirmationData of the Assertion had NotBefore. |
Assertion ID |
The assertion service provider received had NotBefore. |
Check debug for the Assertion received. Contact identity provider if needed. |
|
SAML2-101 |
INFO |
Assertion contained wrong InResponseTo attribute. |
Assertion ID |
InResponseTo in Assertion is different from the one in Response. Or Assertion didn't contain InResponseTo, but Response did. |
Check debug for the Assertion received. Contact identity provider if needed. |
|
SAML2-102 |
INFO |
Assertion contained no Conditions. |
Assertion ID |
Conditions is missing from the Single Sign On Assertion. |
Check debug for the Assertion received. Contact identity provider if needed. |
|
SAML2-103 |
INFO |
Assertion contained no AudienceRestriction. |
Assertion ID |
AudienceRestriction is missing from the Single Sign On Assertion. |
Check debug for the Assertion received. Contact identity provider if needed. |
|
SAML2-104 |
INFO |
Assertion contained wrong Audience. |
Assertion ID |
This service provider was not the intended audience of the single sign on assertion. |
Check debug for the Assertion received. Check meta data. Contact identity provider if needed. |
|
SAML2-105 |
INFO |
Found authentication assertion in the Response. |
Assertion ID Subject if the log level was set to LL_FINE SesionIndex if any |
Both the Response and Assertion(s) inside the Response are valid. |
|
|
SAML2-106 |
INFO |
Invalid SSOToken found in Request. |
SSOToken value |
Initiate Single Logout without SSOToken. |
|
|
SAML2-107 |
INFO |
No entity ID is specified in Request. |
EntityID value |
Initiate Request without EntityID. |
Specify EntityID parameter in request URL. |
|
SAML2-108 |
INFO |
No metaAlias is specified in Request. |
MetaAlias value |
Initiate Request without metaAlias. |
Specify metaAlias parameter in request URL. |
|
SAML2-109 |
INFO |
Redirect request to authentication page. |
URL to Authentication page |
Initiate Request without SSOToken. |
|
|
SAML2-110 |
INFO |
Can not decode URL encoded Query parameter. |
URL encoded Query parameter |
Initiate to decode incorrectly URL encoded Query parameter. |
|
|
SAML2-111 |
INFO |
Can not instantiate MNI Response with input xml. |
Input XML string for MNI Response |
Initiate parse MNI Response with incorrect XML string. |
|
|
SAML2-112 |
INFO |
Can not instantiate MNI Request with input XML. |
Input XML string for MNI Request |
Initiate parse MNI Request with incorrect XML string. |
|
|
SAML2-113 |
INFO |
Can not instantiate SLO Response with input XML. |
Input XML string for SLO Response |
Initiate parse SLO Response with incorrect XML string. |
|
|
SAML2-114 |
INFO |
Can not instantiate SLO Request with input XML. |
Input XML string for SLO Request |
Initiate parse SLO Request with incorrect XML string. |
|
|
SAML2-115 |
INFO |
Can not varify signature in MNI Request. |
MNI Request with signature |
Sinature in MNI Request is incorrect. |
|
|
SAML2-116 |
INFO |
Can not valify signature in MNI Response. |
MNI Response with signature |
Sinature in MNI Response is incorrect. |
|
|
SAML2-117 |
INFO |
Can not valify signature in SLO Request. |
SLO Request with signature |
Sinature in SLO Request is incorrect. |
|
|
SAML2-118 |
INFO |
Can not valify signature in SLO Response. |
SLO Response with signature |
Sinature in SLO Response is incorrect. |
|
|
SAML2-119 |
INFO |
Can not decrypt EncryptedID. |
Exception message |
Decrypt the incorrectly encrypted EncryptedID. |
|
|
SAML2-120 |
INFO |
MNI Response has error status. |
Status message |
Requested MNI Request caused problem. |
|
|
SAML2-121 |
INFO |
SLO Response has error status. |
Status message |
Requested SLO Request caused problem. |
|
|
SAML2-122 |
INFO |
Entity Role is not specified in the request. |
Entity Role value |
Initiate request without Role value. |
Specify Entity Role parameter in the request. |
|
SAML2-123 |
INFO |
Issuer in Request is invalid. |
Hosted Entity ID Name of Realm or organization Request ID |
Issuer in Request is not configured or not trusted by the hosted provider |
Check configuration. |
|
SAML2-124 |
INFO |
Invaid realm while getting all entities. |
Realm or organization name |
Get all entities. |
Check the Realm name. |
|
SAML2-125 |
INFO |
Configuration error while getting all entities. |
Error message Realm or organization name |
Get all entities. |
Check debug message for detailed error. |
|
SAML2-126 |
FINE |
Obtained all entities. |
Realm or organization name |
Get all entities. |
|
|
SAML2-127 |
INFO |
Invalid Policy Enforcement Point (PEP) Identifier. |
PEP Identifier |
Cannot retrieve PEP Metadata |
Provide valid PEP Identifier and retry. |
|
SAML2-128 |
INFO |
Invalid Policy Decision Point (PDP) Identifier. |
PDP Identifier |
Cannot retrieve PDP Metadata |
Provide valid PDP Identifier and retry. |
|
SAML2-129 |
INFO |
Certificate Alias is null, cannot sign the message. |
The realm from which the metadata was retreived. Entity Identifier for the Policy Decision Point. |
Cannot sign the message. |
Check the entity's metadata to verify the certificate alias is correct. |
|
SAML2-130 |
INFO |
Certificate Alias is null,cannot retreive the certificate. |
The realm from which the metadata was retreived. Entity Identifier for the Policy Enforcement Point. |
Cannot validate the signature in the request message. |
Check the entity's metadata to verify the certificate alias is correct. |
|
SAML2-131 |
INFO |
Invalid Signature in Query Request. |
The realm from which the metadata was retreived. Entity Identifier for the Policy Decision Point. Cert Alias used to retrieve certificate from keystore. |
Cannot process the request, server will send back error to the Requester. |
Check the entity's metadata to verify the certificate alias is correct. Check the certificate in the keystore for its existance and validity. |
|
SAML2-132 |
INFO |
Issuer in Request is invalid. |
Name of Realm or organization Identity of the Issuer Hosted Entity Identifier |
Issuer in Request is not configured or not trusted by the hosted provider therefore Query will fail. |
Check the hosted entity configuration attribute cotlist to make sure the issuer identifier is in the list. |
|
SAML2-133 |
INFO |
Unable to retreive Policy Enforcement Point (PEP) Metadata. |
PEP Provider Entity Identifier |
Cannot retrieve PEP Provider Metadata |
Check the Data Store is accessible . Check the PEP Provider Entity Identifier. |
|
SAML2-134 |
INFO |
Unable to retrieve Policy Decision Point (PDP) Metadata. |
PDP Provider Entity Identifier |
Cannot retreive PDP Provider Metadata |
Check the Data Store is accessible . Check the PDP Provider Entity Identifier. |
|
SAML2-135 |
INFO |
Assertion in Response not encrypted. |
Identity of the Issuer Response ID |
Policy Enforcement Point (PEP) Provider requested the assertion in Response to be encrypted, but it received a Response with unencrypted assertion(s). |
Check PEP metadata published to the PDP. Notify Policy Decision Point (PDP) Provider regarding the requirement. |
|
SAML2-136 |
INFO |
Response has no Assertion. |
Identity of Issuer Response ID |
Policy Enforcement Point (PEP) Provider received a Response with no Assertion. |
Check error code of the Response. Notify Policy Decision Point (PDP) Provider to check for errors or possible misconfiguration. |
|
SAML2-137 |
INFO |
Issuer in Assertion is not valid. |
Assertion Issuer Assertion ID |
Issuer in Assertion was not configured at Policy Enforcement Point (PEP) provider, or not trusted by the PEP provider. |
Check the configuration. |
|
SAML2-138 |
INFO |
Issuer in Assertion doesn't match the Issuer in Response. |
Issuer Identifier in the Resposnse Issuer Identity in the Assertion |
Error condition, Response will not be accepted. |
Check the Policy Decision Point instance to debug the cause of the problem. |
|
SAML2-139 |
INFO |
Assertion is not signed or signature is not valid. |
Issuer Identity in the Assertion Assertion ID |
Policy Enforcement Point (PEP) provider requested the Assertion to be signed but the assertion received was not; or the signature on the Assertion received was not valid. |
Check PEP metadata configuration. Check debug for more detailed error message. |
|
SAML2-140 |
FINE |
Request message from Query Requester |
policy decision point entity descriptor SAMLv2 Query Request Message |
SAMLv2 SOAP Query |
|
|
SAML2-141 |
INFO |
Valid Signature in Query Request. |
The realm from which the metadata was retreived. Entity Identifier for the Policy Decision Point. Cert Alias used to retrieve certificate from keystore. |
The Request will be processed. |
|
|
SAML2-142 |
INFO |
Successful federation/Single Sign On. |
user id NameID value |
Successful federation/Single Sign On. |
|
|
SAML2-143 |
INFO |
SAE_IDP succeeded. |
SAE attributes |
SAE_IDP succeeded. |
|
|
SAML2-144 |
INFO |
SAE_IDP failed. |
Error message SAE attributes |
SAE_IDP failed. |
|
|
SAML2-145 |
INFO |
SAE_IDP invoked without attributes. |
Error message |
SAE_IDP invoked without attributes. |
Add SAE attributes to request. |
|
SAML2-146 |
INFO |
SAE_IDP delegated to Auth. |
SAE attributes |
SAE_IDP invoked but no user session. |
|
|
SAML2-147 |
INFO |
SAE_SP succeeded. |
SAE attributes |
SAE_SP succeeded. |
|
|
SAML2-148 |
INFO |
SAE_SP failed. |
Error message |
SAE_SP failed. |
|
|
SAML2-149 |
INFO |
Send a response to ECP. |
Identity Provider Entity Identifier Realm or organization name Assertion Consumer Service URL SOAP message string if the log level was set to LL_FINE at run time |
Received AuthnRequest. |
|
|
SAML2-150 |
INFO |
Unable to send a response to ECP. |
Identity Provider Entity Identifier Realm or organization name Assertion Consumer Service URL |
Send a response to ECP. |
|
|
SAML2-151 |
INFO |
Unable to instantiate a SOAP message sent from ECP. |
Service Provider Entity Identifier |
Received a response from ECP. |
|
|
SAML2-152 |
INFO |
Received a SOAP fault from ECP. |
Service Provider Entity Identifier |
Received a response from ECP. |
|
|
SAML2-153 |
INFO |
Unable to instantiate a SAML Response sent from ECP. |
Service Provider Entity Identifier |
Received a response from ECP. |
|
|
SAML2-154 |
INFO |
Assertion received from ECP is not signed. |
Identity Provider Entity Identifier |
Received a response from ECP. |
|
|
SAML2-155 |
INFO |
Assertion received from ECP has invalid signature. |
Identity Provider Entity Identifier |
Assertion signature verification. |
|
|
SAML2-156 |
INFO |
Received AuthnRequest from ECP. |
Service Provider Entity Identifier IDP meta alias authnRequest xml string |
Single Sign On. |
|
|
SAML2-157 |
INFO |
Received HTTP request from ECP. |
Service Provider Entity Identifier Realm or organization name |
ECP accessed SP Resource. |
|
|
SAML2-158 |
INFO |
Send a PAOS request to ECP. |
Service Provider Entity Identifier Realm or organization name SOAP message string if the log level was set to LL_FINE at run time |
Received HTTP request from ECP. |
|
|
SAML2-159 |
INFO |
Unable to send a PAOS request to ECP. |
Service Provider Entity Identifier Realm or organization name |
Send a PAOS request to ECP. |
|
|
SAML2-160 |
INFO |
Federation termination succeeded. |
user id |
Federation termination succeeded. |
|
|
SAML2-161 |
INFO |
New name identifier succeeded. |
user id |
New name identifier succeeded. |
|
|
SAML2-162 |
INFO |
Unknown princial in manage name ID request. |
Manage Name ID request XML |
Unable to find old name id in the management name id request. |
|
|
SAML2-163 |
INFO |
Unable to terminate federation. |
user id |
Unable to terminate federation. |
|
|
SAML2-164 |
INFO |
Unable to verify signature in Single Sign-On Response using POST binding. |
Identity Provider Entity ID |
Error while trying to verify signature in Response. |
Check Identity Provider metadata Check debug file for detailed info |
- © 2010, Oracle Corporation and/or its affiliates