Community Tip - Visit the PTCooler (the community lounge) to get to know your fellow community members and check out some of Dale's Friday Humor posts! X
Hi Community,
We have trying to enable SSO on Thingworx using ADFS as IDP. We followed steps suggested in this link - Configuring Authentication with AD FS (ptc.com)
When we enable SSO on Thingworx, we are getting below error
2024-06-29 04:54:29.694+0000 [L: INFO] [O: o.s.s.s.l.SAMLDefaultLogger] [I: ] [U: ???] [S: ] [P: ] [T: https-openssl-nio-443-exec-8] AuthNResponse;FAILURE;<<IP>>;<<RELYING_PARTY>>;https://<<ADFS HOST >>/adfs/services/trust;;;org.opensaml.common.SAMLException: Response has invalid status code urn:oasis:names:tc:SAML:2.0:status:Responder, status message is null__ at org.springframework.security.saml.websso.WebSSOProfileConsumerImpl.processAuthenticationResponse
Could someone help me to solve this issue
/VR
Solved! Go to Solution.
Fixed issue with help of Support Ticket.
Disable Signing Certificate Trust Check in ADFS - java - Spring SAML Single Sign on ADFS Response failure because status message is null - Stack Overflow
Removed SAM-Account-Name from Claim
/VR
I took the error message you provided and did a search. This located Article - CS419861 - Not able to login to SSO enabled ThingWorx, SecurityLog shows Message not found in session error
What URL are you using to start ThingWorx? The article seems to say you are using "http:<localhost>:8080/Thingworx" You need to use "https://<localhost>:<secure Port>/Thingworx"
Let me know what you find.
Fixed issue with help of Support Ticket.
Disable Signing Certificate Trust Check in ADFS - java - Spring SAML Single Sign on ADFS Response failure because status message is null - Stack Overflow
Removed SAM-Account-Name from Claim
/VR
Understanding the Error:
The error message "Response has invalid status code urn:oasis:names:tc:SAML:2.0:status:Responder, status message is null" indicates that ADFS is returning an unexpected response. The SAML response is likely missing a valid status message. This usually happens due to misconfiguration in either ADFS or the ThingWorx SAML configuration.
Troubleshooting Steps:
Check ADFS Configuration:
Check ThingWorx SAML Configuration:
Enable Debugging:
Verify Network Connectivity:
Additional Tips:
Example: Partial Code Example (ThingWorx SAML Configuration)
Let me know if you need additional help with specific configuration details, I can provide more targeted assistance.