Markview SAML Integration - Unable to start the Markview Application Server after setting SAML Certificate Preferences

Question / Problem:

After setting up preferences for SAML configuration the application server fails to restart. All deployments except process and mvastrs are in a failed state. Attempting to start them manually fails. 

You may see one of the below errors in the markview_server.out log file:

This error indicates the AUTH_SSO_SAML_CERT_PASSWD is not set correctly.

Dec 29, 2017 2:38:52 PM org.opensaml.xml.security.credential.KeyStoreCredentialResolver resolveFromSource
SEVERE: Unable to retrieve keystore entry for entityID (keystore alias): saml
Dec 29, 2017 2:38:52 PM org.opensaml.xml.security.credential.KeyStoreCredentialResolver resolveFromSource
SEVERE: Check for invalid keystore entityID/alias entry password
Dec 29, 2017 2:38:52 PM org.springframework.context.support.AbstractApplicationContext refresh
WARNING: Exception encountered during context initialization - cancelling refresh attempt
org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'frameworks.sec.auth.sm.SiteminderFilter' defined in class path 
  
This error indicates the path set in AUTH_SSO_SAML_IDP_METADATA_PATH is incorrect. Please make sure the value starts with file:

weblogic.application.ModuleException: org.opensaml.saml2.metadata.provider.MetadataProviderException: Resource /projects/mvhome/markview/saml/idp-metadata.xml does not exist.
at weblogic.application.internal.ExtensibleModuleWrapper.start(ExtensibleModuleWrapper.java:140)
at weblogic.application.internal.flow.ModuleListenerInvoker.start(ModuleListenerInvoker.java:124)

This is caused when one or more of the entries in AUTH_SSO_SAML_IDP_METADATA_PATH, AUTH_SSO_SAML_KEYSTORE_PATH or AUTH_SSO_SAML_CERT_PASSWD is set incorrectly. 

Answer / Solution: 

• Run the script ( ClearSAMLPreferences.sql ) to reset the preferences.
• Once this is done MarkView should start and you should be able to enter the preferences correctly.

Applies to: