enabling saml on edge ui 17.09

Not applicable

hi,

can anyone please help me in enabling saml on edge ui because i'm getting an error while enabling in the console, saying AUTHENTICATION FAILED FOR CLIENT SSOADMIN.

i'm following this document ( https://docs.apigee.com/private-cloud/v4.17.09/enable-saml-edge-ui )

below is the config file used to enable saml. and the error that is being displayed.

thank you

7200-screenshot-from-2018-07-30-10-42-23.png

7201-screenshot-from-2018-07-30-10-40-59.png

0 4 1,158
4 REPLIES 4

was there a resolution for this? I'm having the same issue w/ apigee 4.19. (private cloud)

@henrymedina  were you able to resolve this issue. I am facing same issue 'AUthentication failed for client ssoadmin' for apigee sso installation on 4.50.0. Please let me know as this is blocking me from moving forward.

Thanks

Sonal

Hello Henry,

I was the same error, and I did these steps:

1.- psql -U postgres_username -p postgres_port -h postgres_host -c "drop database \"apigee_sso\""

2.- I added this values on the confFile: /opt/apigee/apigee-service/bin/apigee-service apigee-sso setup -f confFile

# The name of the OAuth client used to connect to apigee-sso.

# The default client name is edgeui.

EDGEUI_SSO_CLIENT_NAME=edgeui

# Oauth client password using uppercase, lowercase, number, and special chars.EDGEUI_SSO_CLIENT_SECRET=ssoClient123

3.- /opt/apigee/apigee-service/bin/apigee-service edge-ui configure-sso -f confFile2


And this is my output:

Successfully fetched access token for "ssoadmin" clientSuccessfully created oauth client:"edgeui"apigee-service: edge-ui: pid=29715apigee-service: edge-ui: OKapigee-service: edge-ui: Not running (DEAD)apigee-service: edge-ui: OKThe file conf/apigee-base.conf was changed[ChangeDelta, position: 79, lines: [apigee.feature.useSso="false"] to [apigee.feature.useSso="true"]][ChangeDelta, position: 81, lines: [apigee.feature.ssoSignInUrl=${apigee.feature.ssoBaseUrl}"/accounts/sign_in", apigee.feature.ssoSignOutUrl=${apigee.feature.ssoBaseUrl}"/accounts/sign_out", apigee.feature.ssoUserSettingsUrl=${apigee.feature.ssoBaseUrl}"/accounts/my_account", apigee.feature.ssoUserInfoUrl=${apigee.feature.ssoBaseUrl}"/api/v1/users"] to [apigee.feature.ssoSignInUrl="http://35.196.136.224:9099/oauth/authorize", apigee.feature.ssoSignOutUrl="http://35.196.136.224:9099/logout.do", apigee.feature.ssoUserSettingsUrl="http://35.196.136.224:9099/profile", apigee.feature.ssoUserInfoUrl="http://35.196.136.224:9099/userinfo"]][ChangeDelta, position: 86, lines: [apigee.feature.ssoClientId="apiplatform", apigee.feature.disableSsoEmailValidation="false", apigee.feature.sso2TokenEndpoint="", apigee.feature.ssoClientSecret="", apigee.feature.useSso2Version="false"] to [apigee.feature.ssoClientId="edgeui", apigee.feature.disableSsoEmailValidation="true", apigee.feature.sso2TokenEndpoint="http://35.196.136.224:9099/oauth/token", apigee.feature.ssoClientSecret="ssoClient123", apigee.feature.useSso2Version="true"]][ChangeDelta, position: 97, lines: [apigee.feature.sso2EndPointHost=""] to [apigee.feature.sso2EndPointHost="35.196.136.224:9099"]][ChangeDelta, position: 104, lines: [apigee.isInternalInstallation="false"] to [apigee.isInternalInstallation="true"]]apigee-configutil: edge-ui: # OKapigee-service: edge-ui: Not running (NO_LOCKFILE)apigee-service: edge-ui: status=2, continuingapigee-service: edge-ui: OKapigee-service: edge-ui: edge-ui is running

han-zhang
Participant IV

I initially configured my edgeui with IP address in the config file, but later when i changed it to DNS name and i got the same error. Changed back to IP resolved the issue in my case.