Symptom
After update to newer versions SAML2 authentication no longer works but basic authentication password + user works fine
In the TSHW trace log:
=====
SAML2Assertion received could not be decrypted.
[EXCEPTION]
com.sap.security.saml2.sp.exception.BadCredentialsException: Rejected not signed Response
...
Reason: SAML2Assertion received could not be decrypted.
at com.sap.engine.core.thread.execution.CentralExecutor$SingleThread.run(CentralExecutor.java:328)
Caused by: com.sap.engine.lib.xml.signature.SignatureException: EME-OAEP_DECODE error - pHash does not equal pHash'
at com.sap.engine.lib.xml.signature.encryption.keytrans.algorithms.RSA_OAEP_Transporter.eme_oaep_decode(RSA_OAEP_Transporter.java:280)
=====
Read more...
Environment
Netweaver Application Server Java -NW 7.5
Keywords
KBA , BC-JAS-SEC-WSS , Web Services Security , BC-JAS-SEC , Security, User Management , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.