Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
gh05t
Participant

Identity Awareness and SAML ADFS - Error 500

Hi!

We would like to set up Identity Awareness with on-premises Microsoft ADFS as an identity provider. Configuration was done (identity provider, authentication settings for portal, rules with roles and captive portal), but when the user enter credentials on the portal, the server return 500 error. I can't find any logs with the error or reason for this. This only happens when the user enters the correct credentials, when entering the wrong credentials, a new authorization dialog box appear.

Trying to get this to work I'm found

https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...

but no log files appear.

What could be cause of this error and how to fix it?

It's a lab environment, I try it on R80.40 and R81 with same result.

0 Kudos
5 Replies
PhoneBoy
Admin
Admin

This particular one is related to DLP.
I have a feeling the 500 error is coming from the Microsoft end, not necessarily our end.
Can you attach a screenshot to confirm what is generating the 500 error?

@Royi_Priov any tips on troubleshooting this?

0 Kudos
gh05t
Participant

I attached screenshot, it shows that error 500 returned from gateway /connect/spPortal/Login url.

ADFS already in use with other different SAML service providers and work fine. All configurations were done according to this

https://sc1.checkpoint.com/documents/Infinity_Portal/WebAdminGuides/EN/Infinity-Portal-Admin-Guide/T...

because claim rules configuration from other manuals return error from ADFS.

0 Kudos
Royi_Priov
Employee
Employee

Hi @gh05t,

Can you check if it happens also on Google Chrome?

Thanks,
Royi Priov
Group manager, Identity Awareness R&D
0 Kudos
gh05t
Participant

In Google Chrome I've got same error 500

0 Kudos
Royi_Priov
Employee
Employee

Can you please debug it using sk102986?

Once the debug is ready, please open ticket with our support with the log files.

Thanks,
Royi Priov
Group manager, Identity Awareness R&D
0 Kudos