SAML Login Attempt is Denied

Problem

You fill in the data required to log in to the Automic Automation system using SAML, but you receive a message that the access is denied. To find out what has happened, go to the JWP log file of the Automation Engine and scroll down to the very end. You might find a message such as the following:

U00045317 "saml2:Assertion" is not signed in. SAML response for destination "http://localhost:8080/AWI"

U00000009 "TEST": Access denied

Solution

1. In the UC_SAML_SETTINGS of client 0, go to the *SP key.
2. See what is defined in the WantAssertionsSigned property. By default, it is set to "true".
3. If this is the case, set WantAssertionsSigned="false". Depending on the SAML provider (OKTA, OAUTH, MS, LDAP), "false" may be required.