Hi guys last letter for this year.
Another silly support tip for Domino and Third Party SAML XML documents,
If you are hitting this post it is most likely you got here via a google search, so it does not have the whole back ground on SAML but after creating a Idp configuration and restarting you might get this line in the console:
HTTP Server: Error reading IdP configuration for server saml XXX.XXX.XXX.XXX:Invalid arguments
This odd little error is nearly always down to character returns in the X509 certificate in the imported XML file (easy to find and fix just go and edit the XML document provided by your SAML provider and remove them)
However the XML document I had did not have any character returns (cue a little head scratching), what it did have right at the sodding end of the very long line was an extra space….
so in the <ds:X509Certificate> tag in the SAML Import XML make sure you don’t have ANY characters that are not part of the certificate.
If this still does not work and you actually want to see if you have got a proper certificate you can you the wonderful http://www.keystore-explorer.org/ to have a good look at it
Just get the text in between the <ds:X509Certificate>CERT TEXT</ds:X509Certificate> tags and paste it into a empty text file with a *.cer extension, then open it up with the “inspect a certificate” Option.
Hi Guys a few pics from Spain.