cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Community Tip - If community subscription notifications are filling up your inbox you can set up a daily digest and get all your notifications in a single email. X

Thingworx and Azure AD SSO issue

Go to solution
Velkumar
18-Opal
18-Opal
‎Jul 01, 2020 08:42 AM
‎Jul 01, 2020 08:42 AM

Thingworx and Azure AD SSO issue

Hi all,

 

We have configured Thingworx, PingFederate and Azure AD. When we try to login it throwing below error.

 

2020-07-01 11:04:46.703+0000 [L: ERROR] [O: o.o.x.e.Decrypter] [I: ] [U: ] [S: ] [P: ] [T: https-jsse-nio-443-exec-9] Error decrypting encrypted key
2020-07-01 11:04:46.703+0000 [L: ERROR] [O: o.o.x.e.Decrypter] [I: ] [U: ] [S: ] [P: ] [T: https-jsse-nio-443-exec-9] Failed to decrypt EncryptedKey, valid decryption key could not be resolved
2020-07-01 11:04:46.703+0000 [L: ERROR] [O: o.o.x.e.Decrypter] [I: ] [U: ] [S: ] [P: ] [T: https-jsse-nio-443-exec-9] Failed to decrypt EncryptedData using either EncryptedData KeyInfoCredentialResolver or EncryptedKeyResolver + EncryptedKey KeyInfoCredentialResolver
2020-07-01 11:04:46.703+0000 [L: ERROR] [O: o.o.s.e.Decrypter] [I: ] [U: ] [S: ] [P: ] [T: https-jsse-nio-443-exec-9] SAML Decrypter encountered an error decrypting element content

 

I have tried this link from StackOverflow - https://stackoverflow.com/questions/31987116/error-while-decrypting-assertion-sent-from-idp still no luck. 

 

Could any one help me to solve this issue 

 

Thanks in advance

 

/VR

0 Kudos
Notify Moderator
1 ACCEPTED SOLUTION

Accepted Solutions
vinakumar
10-Marble
10-Marble
(To:Velkumar)
‎Jul 02, 2020 08:18 AM
‎Jul 02, 2020 08:18 AM

I had handled the  Salesforce case assigned  against this problem and found the root cause as two different tomcat ssl certificates were present in SP connection of Ping federate and customer was using one certificate for signing requests and other certificate for signing verification which is causing the issue. Once we edit the SP connection and make the same certificate used for signing and signing verification and it works for customer.

View solution in original post

Notify Moderator
2 REPLIES 2
vinakumar
10-Marble
10-Marble
(To:Velkumar)
‎Jul 02, 2020 08:18 AM
‎Jul 02, 2020 08:18 AM

I had handled the  Salesforce case assigned  against this problem and found the root cause as two different tomcat ssl certificates were present in SP connection of Ping federate and customer was using one certificate for signing requests and other certificate for signing verification which is causing the issue. Once we edit the SP connection and make the same certificate used for signing and signing verification and it works for customer.

Notify Moderator
slangley
23-Emerald II
23-Emerald II
(To:Velkumar)
‎Jul 02, 2020 09:26 AM
‎Jul 02, 2020 09:26 AM

Hi @Velkumar.

 

If you agree with the solution posted by @vinakumar from working the case, please mark it as the Accepted Solution for the benefit of others with the same issue.

 

Thank you for participating in our community!

 

Regards.

 

--Sharon

0 Kudos
Notify Moderator
Top Tags