IBM Verify

IBM Verify

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only
Expand all | Collapse all

FBTSML218E The specifications for the SAML2.AssertionConsumerService endpoint are not valid.

  • 1.  FBTSML218E The specifications for the SAML2.AssertionConsumerService endpoint are not valid.

    Posted Thu February 17, 2022 08:08 AM
    I am trying for Single Sign-On to Salesforce.com using
    IBM Access Manager but in the end it gives me the above error.

    ------------------------------
    shivsantosh patil
    ------------------------------


  • 2.  RE: FBTSML218E The specifications for the SAML2.AssertionConsumerService endpoint are not valid.

    Posted Thu February 17, 2022 10:21 AM
    Hello Shivsantosh,

    Usually this error would indicate that the Assertion Consumer URL (ACS) in Access Manager configuration doesn't match the ASC being presented in the login request from the Service Provider (Salesforce).  This is unusual in Access Manager because these endpoints are loaded from metadata.

    Are you sure that you loaded up-to-date metadata from Salesforce when configuring Access Manager?
    In theory you could check the partner configuration in Access Manager with the information shown in SSO settings in Salesforce.

    I think Salesforce calls the ACS the "Login URL".

    Jon.


    ------------------------------
    Jon Harry
    Consulting IT Security Specialist
    IBM
    ------------------------------



  • 3.  RE: FBTSML218E The specifications for the SAML2.AssertionConsumerService endpoint are not valid.

    Posted Tue February 22, 2022 06:23 AM
    hello jon,
    Yesterday i achieve successfully salesforce integration to ISAM by SAML.
    thank you for your help.

    Shivsantosh

    ------------------------------
    shivsantosh patil
    ------------------------------