Symptom:
- After adding the new server to the farm and pointing the request using WFE, its failing Server application on _trust URL
Following
error is logged:
Application
error when access /_trust, Error=An XML error has occurred.
at
Microsoft.SharePoint.SPSaml11BaseTokenHandler.ReadAssertion(XmlReader reader)
at
Microsoft.IdentityModel.Tokens.Saml11.Saml11SecurityTokenHandler.ReadToken(XmlReader
reader)
Cause:
- There’s a Ping Federate setting “Include Raw Key in KeyValue”. If that is enabled, it will add a second RSA key to the SAML assertion causing the issue.
Resolution:
- You need to change this setting as per the following article:
Reference
: https://joshroark.com/sharepoint-saml-auth-login-error-there-are-multiple-keys-on-the-token/
- After you changed the setting the issue got resolved.
No comments:
Post a Comment