/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
- Authentication failure occurs when the "Enforce Issuer Validation" option is switched on for the Open ID Connect corporate IdP.
- The following error occurs in IAS trouble shooting logs
"state='failed', action='handleOidcCallback', objectType='openIdClient', objectId='40b471fb-3f16-42e6-a568-7bb3da635187', message='invalid_request. Parameter [iss] in idp response must match trusted issuer.', category='audit.authentication', workflow='openIdConnect'"
Read more...
Environment
Identity Authentication
Keywords
open id authentication failure, enforce issuer validation, cloud identity authentication services, RFC 9207, iss query parameter, authentication error, corporate idp configuration, BTP application login, oauth2, oidc , KBA , BC-IAM-OID , OIDC/OAUTH2 component in SAP Cloud Identity Services , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)