Open ronnieholm opened 1 year ago
Problem is that setup_prerequisites.ps1
installs the root certificate in the wrong location.
TRUST2408 Systemtest VII Primary CA
ends up in Intermediate Certification Authorities
when it must be in Trusted Root Certification Authorities
.
In Certificate Manager, clicking TRUST2408 Systemtest VII Primary CA
, the UI reports:
This CA Root certificate is not trusted because it is not in the Trusted Root Certification Authorities store.
For now, to resolve the issue, drag and drop TRUST2408 Systemtest VII Primary CA
into Trusted Root Certification Authorities
.
For now, to resolve the issue, drag and drop
TRUST2408 Systemtest VII Primary CA
intoTrusted Root Certification Authorities
.
This resolved the issue for me (I think) - though now I have a different error (below) which I think is unrelated. Anyhow - thanks for the certificate fix.
"The user doesn't have a session in context of a cookie ... which is required at this point in the pipeline. Plausible reason is that OIOSAML.Net is not running under https. The session cookie is marked with 'secure only'."
Yes. The user doesn't have a session in context of a cookie
is unrelated. You may be running an out of date version of ASP.NET. One without the third-party cookie patch. This ASP.NET behavior changed 2-3 years ago, forced by Google, affecting not only NemLog-in.
Let's not mix issues.
Repro steps:
readme.md
to setupIdentityProviderDemo
andWebsiteDemo
.IdentityProviderDemo
andWebsiteDemo
from Visual Studio.IdentityProviderDemo
fromWebsiteDemo
.Login fails to complete on the IdP side:
due to
The IdP cannot verify the service provider's certificate and thus cannot sign the response to the SP.