User application and Access Manager SAML integration

Hello,

We have integrated NAM with User application using SAML.
I get the NAM login page only if I enter url: https://userapplicationurl/IDMProv

And I get connection refused if I enter https://userapplicationurl/idmdash

Please let me know how to re-direct user to dashboard after entering credentials.

Right now it takes us to /IDMProv/portal/cn/DefaultContainerPage/MyOrgChart page after entering the credentials and there I get a following message.

The page cannot be found.

The User Application interface is discontinued. Click this link to access the new user interface.

And when I click on the given link then it takes me to dashboard page.

And when in user application configupdate file I updated RBPM OSP redirect url to https://userapplicationurl/idmdash/#/landing, then it redirects user to dashboard after entering the credentials.

But when I try to open any workflow then again it redirect me to https://userapplicationurl/idmdash/#/landing instead of opening the workflow.

Version used:
IDM: 4.7.1
NAM: 4.4.1

Please let me know how to resolve this issue.

Thanks,
Sushant
Parents Reply Children
  • Hi Ramesh,

    I checked the TID mentioned in section 37.2.2 in https://www.netiq.com/documentation/...e-sign-on.html, it is for NAM 4.3, we are using NAM 4.4.1

    Anyways, the issue has been resolved.

    I updated H404.jsp located under /opt/netiq/idm/apps/tomcat/webapps/IDMProv/jsps/common and mentioned the following:

    <% response.sendRedirect("">UserapplicationURL/idmdash"); %>

    Now after enter the credentials in NAM login page i'm getting re-directed to dashboard page.

    Thanks,
    Sushant
  • On 12/7/18 2:54 AM, sushantcap wrote:
    >
    > Hi Ramesh,
    >
    > I checked the TID mentioned in section 37.2.2 in
    > https://www.netiq.com/documentation/...e-sign-on.html, it is for NAM
    > 4.3, we are using NAM 4.4.1
    >
    > Anyways, the issue has been resolved.
    >
    > I updated H404.jsp located under
    > /opt/netiq/idm/apps/tomcat/webapps/IDMProv/jsps/common and mentioned the
    > following:
    >
    > <% response.sendRedirect("">UserapplicationURL/idmdash"); %>
    >
    > Now after enter the credentials in NAM login page i'm getting
    > re-directed to dashboard page.
    >
    > Thanks,
    > Sushant
    >
    >

    Greetings,
    That sounds more like a work-around then a resolution. I would
    suggest opening a Service Request with Support so they can track down
    the root of the issue and update as necessary.

    --
    Sincerely,
    Steven Williams
    Principal Enterprise Architect
    Micro Focus
  • Hey Suahant,

    Sounds like a neat solution to people hitting the /IDMProv URL, which is now invalid. Nice way to redirect people if they have old bookmarks.

    There's another problem here though, that you should resolve - the redirection between OSP and NAM should work well for whatever valid UserApp URL the users hit.

    If you revert the H404 config to normal temporarily, and then trace the auth in Firefox using the SAML-Tracer extension, do you see anything relevant in there?

    CFN,

    /KS