Editing an Access Manager SAML2 Application Connector returns "{{saml2.inEditMode && "Edit" || "New"}} SAML2 Application"

  • Document ID:7024124
  • Creation Date:18-Sep-2019
  • Modified Date:18-Sep-2019
    • Micro Focus Products:
      Access Manager (NAM)

Environment

  • NetIQ Access Manager 4.4
  • NetIQ Access Manager 4.5

Situation

  • a new SAML2 Service Provider (SP) as been added
  • no errors have been reported during the metadata import process
  • IDP health status is green

  • Trying to edit the SP from within the Applications menu returns a garbled / corrupted enty
    {{saml2.inEditMode && "Edit" || "New"}} SAML2 Application

Resolution

make sure the <md:KeyDescriptor> includes XML Signature Elements using the digital signature "ds" name space

<md:KeyDescriptor>
  <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
    <ds:X509Data>
      <ds:X509Certificate>MIIDXXXXX</ds:X509Certificate>
    </ds:X509Data>
  </ds:KeyInfo>
</md:KeyDescriptor>

Cause

The metadata did not include any name space definitions for XML Signature elements using "ds"

<md:KeyDescriptor>
    <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
      <X509Data>
       <X509Certificate>MIIDXXXXX</X509Certificate>
     </X509Data>
   </KeyInfo>
</md:KeyDescriptor>