SAP Knowledge Base Article - Public

2953019 - Error in ST program SAML2_LOGOUT_RESPONSE when importing XML data

Symptom

You configured SSO but receive the following error;

"Error in ST program SAML2_LOGOUT_RESPONSE when importing XML data".

Environment

SAP Cloud for Customer

Reproducing the Issue

  1. Go to Application and User Management >> Common Tasks.
  2. Select 'Configure Single Sign-On'.
  3. From 'My System' download SP Metadata and forward it to IDP.
  4. Configure IDP manually.
  5. In C4C, upload file and activate Single Sign-On.
  6. Save.
  7. Error occurs.

Cause

The SAMLResponse coming from the Identity Provider is being sent to the Single Logout Service (SLO) from the Service Provider and not the Assertion Consumer Service (ACS).

Resolution

Modify the Identity Provider configuration to send the SAMLResponse to the ACS and not the SLO.

Example: Change the endpoint from "http(s)://<hostname>:<port>/sap/saml2/sp/slo" to "http(s)://<hostname>:<port>/sap/saml2/sp/acs".

Keywords

SAML2 logout response, import XML error, configure SSO , KBA , saml2 logout response , configure sso , LOD-CRM-SEC , Security Topics , Problem

Product

SAP Cloud for Customer core applications all versions