Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-3005

Exported IdP entity cannot be imported back via console

    XMLWordPrintable

    Details

    • Rank:
      1|hzo3g7:

      Description

      Since SAMLv2 failover setup for identity provider requires exporting and importing metadata due to OPENAM-830, the attempt to do it via console fails reporting invalid metadata file. Logs report:

      amConsole:09/18/2013 11:40:49:540 AM BST: Thread[http-bio-8080-exec-9,5,main]
      ERROR: ImportEntityModel.getEntityConfigElement
      javax.xml.bind.UnmarshalException: Reference is not allowed in prolog.
       - with linked exception:
      [org.xml.sax.SAXParseException: Reference is not allowed in prolog.]
      

      Steps to reproduce:
      1. Create a hosted IdP
      2. Export the entity via ssoadm:

      ssoadm export-entity -y http://saml-idp.internal.forgerock.com:80/openam -u amadmin -f .pwd -e / -m metadata.xml -x extended.xml
      

      3. Delete the existing hosted IdP entity
      4. Import the new entity using exported metadata and extended XML files
      5. The error is observed

      If imported using ssoadm, everything works fine.

        Attachments

          Activity

            People

            Assignee:
            markdr Mark de Reeper
            Reporter:
            n4al Nemanja Lukic
            QA Assignee:
            Nemanja Lukic Nemanja Lukic
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: