Versions Compared

Old Version 2

changes.mady.by.user Paul Ruvin

Saved on

compared with

New Version Current

changes.mady.by.user Adam Darwin

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

ISSUE

Following an update to the latest version DualShield Authentication Server v6.5.1 and IIS Agent, end users are no longer able to access a web SSO app such as OWA.

RESOLUTION

CAUSE

Looking at the HAR file It appears that OpenSAML thought the Signature was legitimate, but chilkat (the library we used in IIS agent) does not like it.

This may have been been introduced by the recent upgrade on OpenSAML library.

Therefore once customers have upgraded DualShield to the latest version they will see the error above

RESOLUTION

Open Java options ( see How to Reset the sa Password in DualShield which demonstrates how to launch Java Options)

Include Page
How to edit JAVA options in the DualShield framework
How to edit JAVA options in the DualShield framework

Append the line below to Java Options:.Append this line..


Code Block
-Dorg.apache.xml.security.ignoreLineBreaks=true

...

Save and restart the DualShield Server service.