This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Sanjay_S
Advisor
‎2023-03-06 11:58 PM

Validation Error for Identity Provider

Hi All,

Last week i upgraded our MDS from R81 to R81.10, it was all successful. No major issues observed.

However i see some cosmetic error in one of our customer's domain. We are getting validation error for the identity provider created for the SAML authentication. Error says "VPN is not supported" and the other error says "Incorrect fields in SAML Service." 

Though these validation errors are there i am still able to push the policy without any issues. Also i upgraded the smart Console to the latest build version 413 and i still see the same. 

Did anyone come across this kind of issue post upgrade?

Regards,

Sanjay S

0 Kudos
8 Replies
Chris_Atkinson
Employee Employee
Employee
‎2023-03-07 12:00 AM

Can you please confirm which JHF take the environment is installed with currently?

CCSM R77/R80/ELITE
0 Kudos
Sanjay_S
Advisor
‎2023-03-07 12:36 AM
In response to Chris_Atkinson

Hi Chris,

It is JHF 87.

Regards,

Sanjay S

0 Kudos
PhoneBoy
Admin
Admin
‎2023-03-07 12:01 PM

It may be you need to reapply the steps from: https://support.checkpoint.com/results/sk/sk172909

0 Kudos
Sanjay_S
Advisor
‎2023-03-09 03:44 AM
In response to PhoneBoy

Hi PhoneBoy,

Suggesting to install the script in MDS for the domain and then Create the Identity Provider. And configure the SAML authentication. Are these steps you suggesting?

Usually if we have validation error we we will not be able to push the policy untill we fix it right?

Regards,

Sanjay S

0 Kudos
PhoneBoy
Admin
Admin
‎2023-03-09 10:32 AM
In response to Sanjay_S

I believe you need to run the script again (maybe not the other steps).
However, I would check this with TAC.

Sanjay_S
Advisor
‎2023-04-04 12:37 AM
In response to PhoneBoy

Hi PhoneBoy,

You heard anything from TAC on this?

Regards,

Sanjay S

0 Kudos
PhoneBoy
Admin
Admin
‎2023-04-06 08:03 AM
In response to Sanjay_S

You would need to open a ticket with TAC: https://help.checkpoint.com 

cyberluke365
Contributor
‎2023-06-27 04:40 AM
In response to PhoneBoy

Hello guys,

we had the exactely the same issue when migrated the Management from R81 to R81.10.

The solution is pretty simple: just add a comment in the Identity Provider Object (source: sk173707).

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    Top