Question

4
Replies
992
Views
NaveenM4274 Member since 2014 17 posts
Tech Mahindra
Posted: April 21, 2017
Last activity: April 23, 2017
Closed
Solved

Unable to build SAML2 Logout Response Redirect URL

Hi All,

Am running into an issue with SAML log out,

2017-04-20 14:12:15,627 [ WebContainer : 2] [ STANDARD] [ ] [ CBR:01.01.01] ( internal.mgmt.Executable) ERROR prpc-dev02.ist.intralink.bns|10.61.49.176 s8002473 - Exception
com.pega.pegarules.pub.PRRuntimeException: Unable to build SAML2 Logout Request Redirect URL : Unable to build SAML2 Logout Response Redirect URL : java.security.KeyStore$TrustedCertificateEntry incompatible with java.security.KeyStore$PrivateKeyEntry
at com.pega.pegarules.integration.engine.internal.util.PRSAMLv2Utils.generateRedirectURL(PRSAMLv2Utils.java:640)
at com.pegarules.generated.activity.ra_action_samlsinglelogoff_5173192a9453dc64a2033578a10d8d73.step2_circum0(ra_action_samlsinglelogoff_5173192a9453dc64a2033578a10d8d73.java:638)
at com.pegarules.generated.activity.ra_action_samlsinglelogoff_5173192a9453dc64a2033578a10d8d73.perform(ra_action_samlsinglelogoff_5173192a9453dc64a2033578a10d8d73.java:93)

Caused by:
com.pega.pegarules.pub.PRRuntimeException: Unable to build SAML2 Logout Response Redirect URL : java.security.KeyStore$TrustedCertificateEntry incompatible with java.security.KeyStore$PrivateKeyEntry
at com.pega.pegarules.integration.engine.internal.util.PRSAMLv2Utils.getCredential(PRSAMLv2Utils.java:789)
at com.pega.pegarules.integration.engine.internal.util.PRSAMLv2Utils.generateRedirectURL(PRSAMLv2Utils.java:627)
... 72 more
Caused by:
java.lang.ClassCastException: java.security.KeyStore$TrustedCertificateEntry incompatible with java.security.KeyStore$PrivateKeyEntry
at com.pega.pegarules.integration.engine.internal.util.PRSAMLv2Utils.getCredential(PRSAMLv2Utils.java:775)
... 73 more

https://pdn.pega.com/support-articles/logout-when-idp-does-not-provide-slo-failing-0

https://pdn.pega.com/support-articles/logout-error-saml-authentication

I tried the options provided in pdn, but i am running into new issues

1) User 1 logged in to enterprise portal and then launches PEGA from SSO SAML - clicks on a specific workbasket

2) Log off from PEGA

3) Log off from Enterprise Portal.

4) using the same browser user 2 logs in to enterprise portal and launches PEGA

5) Instead of showing default portal, User 2 is getting displayed that specific workbasket which was access by previous user.

Any thoughts, ?

Thanks
NM

***Updated by moderator: Lochan to add Categories***

Data Integration System Administration
Moderation Team has archived post
Share this page LinkedIn