cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

ThingWorx Navigate is now Windchill Navigate Learn More

Translate the entire conversation x

Thingworx and Azure AD SSO issue

Go to solution
Velkumar
19-Tanzanite
19-Tanzanite
‎Jul 01, 2020 08:42 AM
‎Jul 01, 2020 08:42 AM

Thingworx and Azure AD SSO issue

Hi all,

 

We have configured Thingworx, PingFederate and Azure AD. When we try to login it throwing below error.

 

2020-07-01 11:04:46.703+0000 [L: ERROR] [O: o.o.x.e.Decrypter] [I: ] [U: ] [S: ] [P: ] [T: https-jsse-nio-443-exec-9] Error decrypting encrypted key
2020-07-01 11:04:46.703+0000 [L: ERROR] [O: o.o.x.e.Decrypter] [I: ] [U: ] [S: ] [P: ] [T: https-jsse-nio-443-exec-9] Failed to decrypt EncryptedKey, valid decryption key could not be resolved
2020-07-01 11:04:46.703+0000 [L: ERROR] [O: o.o.x.e.Decrypter] [I: ] [U: ] [S: ] [P: ] [T: https-jsse-nio-443-exec-9] Failed to decrypt EncryptedData using either EncryptedData KeyInfoCredentialResolver or EncryptedKeyResolver + EncryptedKey KeyInfoCredentialResolver
2020-07-01 11:04:46.703+0000 [L: ERROR] [O: o.o.s.e.Decrypter] [I: ] [U: ] [S: ] [P: ] [T: https-jsse-nio-443-exec-9] SAML Decrypter encountered an error decrypting element content

 

I have tried this link from StackOverflow - https://stackoverflow.com/questions/31987116/error-while-decrypting-assertion-sent-from-idp still no luck. 

 

Could any one help me to solve this issue 

 

Thanks in advance

 

/VR

0 Kudos
Notify Moderator
ACCEPTED SOLUTION

Accepted Solutions
vinakumar
12-Amethyst
12-Amethyst
(To:Velkumar)
‎Jul 02, 2020 08:18 AM
‎Jul 02, 2020 08:18 AM

I had handled the  Salesforce case assigned  against this problem and found the root cause as two different tomcat ssl certificates were present in SP connection of Ping federate and customer was using one certificate for signing requests and other certificate for signing verification which is causing the issue. Once we edit the SP connection and make the same certificate used for signing and signing verification and it works for customer.

View solution in original post

Notify Moderator
2 REPLIES 2
vinakumar
12-Amethyst
12-Amethyst
(To:Velkumar)
‎Jul 02, 2020 08:18 AM
‎Jul 02, 2020 08:18 AM

I had handled the  Salesforce case assigned  against this problem and found the root cause as two different tomcat ssl certificates were present in SP connection of Ping federate and customer was using one certificate for signing requests and other certificate for signing verification which is causing the issue. Once we edit the SP connection and make the same certificate used for signing and signing verification and it works for customer.

Notify Moderator
slangley
23-Emerald II
23-Emerald II
(To:Velkumar)
‎Jul 02, 2020 09:26 AM
‎Jul 02, 2020 09:26 AM

Hi @Velkumar.

 

If you agree with the solution posted by @vinakumar from working the case, please mark it as the Accepted Solution for the benefit of others with the same issue.

 

Thank you for participating in our community!

 

Regards.

 

--Sharon

0 Kudos
Notify Moderator
Announcements




Contact Community Management
Top Tags