SAP Knowledge Base Article - Preview

3715457 - SAML2 error "New trusted provider cannot be saved" with trace message "Certificates cannot be saved in PSE: 'An exception with the type CX_SY_FILE_AUTHORITY wa'."

Symptom

  1. When adding a new identity provider in transaction SAML2, it fails with error message "New trusted provider cannot be saved".

  2. A trace from the Security Diagnostic Tool has one of the following errors (truncation may appear at different spots): 
    • SAML20  SAML20 CX_SAML20_CORE: Certificates cannot be saved in PSE: 'An exception with the type CX_SY_FILE_AUTHORITY wa'. Long text: Certificates cannot be saved in PSE: 'An exception with the type CX_SY_FILE_AUTHORITY wa'.
    • SAML20 SAML20 CX_SAML20_CORE: Certificates cannot be saved in PSE: 'An exception with the type CX_SY_FILE_AUTHORITY was raised'. Long text: Certificates
    • SAML20 SAML20 CX_SAML20_CORE: Certificates cannot be saved in PSE: 'An exception with the type CX_SY_FILE_AUTHORITY oc'. Long text: Certificates cannot be saved in PSE: 'An exception with the type CX_SY_FILE_AUTHORITY oc'.

  3. Further along this message, it may show either:
    • SAML20 Caused by: CX_SY_NO_HANDLER: An exception with the type CX_SY_FILE_AUTHORITY was raised, but was not handled locally or declared in a RAISING clause.. Long text: An exception of type 'CX_SY_FILE_AUTHORITY' occurred, that was not caught anywhere in the call hierarchy. It was not handled locally or declared using a RAISING clause.
    • SAML20 Caused by: CX_SY_NO_HANDLER: An exception with the type CX_SY_FILE_AUTHORITY occurred, but was neither handled locally, nor declared in a RAISING clause. Long text: An exception of type 'CX_SY_FILE_AUTHORITY' occurred, that was not caught anywhere in the call hierarchy. It was not handled locally or declared using a RAISING clause.

  4. In transaction STRUST, PSE "SSF SAML2 Service Provider - Signature" may show the error "Local PSE does not match database original".


Read more...

Environment

  • ABAP platform
  • SAP NetWeaver

Product

ABAP platform all versions ; SAP NetWeaver all versions

Keywords

saml2, new trusted provider cannot be saved, certificates cannot be saved in pse, cx_saml20_core, cx_sy_file_authority, Local PSE does not match database original, An exception with the type CX_SY_FILE_AUTHORITY, CX_SY_FILE_AUTHORITY, CX_SY_NO_HANDLER , KBA , BC-SEC-LGN-SML , SAML 2.0 for ABAP , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.