We are celebrating the 10-year anniversary of the Alteryx Community! Learn more and join in on the fun here.
community Alteryx IO MyAlteryx
alteryx Community
Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Close
Start Free Trial

Alteryx Server Discussions

Find answers, ask questions, and share expertise about Alteryx Server.

SAML auth; Page not found during login

Brayndasilva
7 - Meteor
‎06-30-2022 10:12 AM

We have been trying to configure SAML authentication for our gallery the past few days. One of the issues were related to SSL not being properly configured first (as required by our IDP). I feel like we are so close to properly configuring SAML, but can't figure out what the problem is now.

 

When an user tries to login on the Gallery, it is presented with the following page:

2022-06-30 19_01_20-Analytics Gallery.png

 

Considering all other scenario's we stumbled upon we must be getting closer to the solution. Do any of you who configured SAML before happen to know what might be causing this?

 

Our ACS Base URL points to https://<....>/aas/  as generated by the Systems Settings.

     I also tried both combinations of /aas/Saml2/Acs/ and /aas/Saml2/. These cause a 404 resource not found

     This URL should be set as the Reply URL and/or Entity ID within the IDP correct?

 

Our IDP URL points to the Azure AD Identifier the IDP Metadata URL points to the metadata. If I choose to specify the X509 certificate and SSO URL separately (both as defined within the earlier metadata URL) I get the same result, so I think these are set up properly at least.

 

Any direction towards a solution is appreciated!

Labels:
Reply
0 Likes
2 REPLIES 2
fmvizcaino
17 - Castor
17 - Castor
‎07-01-2022 12:46 PM

Hi @Brayndasilva ,

 

One thing that could be causing this issue are the claims, these are case sensitive and even additional whitespaces or an additional claim could make this happen.

fmvizcaino_0-1656681871804.png

 

You should be able to verify the mappings from your aas-log file located by default here:  C:\ProgramData\Alteryx\Logs\aas-log-xxxx.txt

The mapping should look like this:  (make sure capitalization on the N for Name also follows) 

 

 \"email\": \"crincon@alteryx.com\",
    \"firstName\": \"Christian\",
    \"lastName\": \"Rincon\",

 

Best,

Fernando Vizcaino

Reply
bny_abo
6 - Meteoroid
‎10-05-2022 11:31 AM

I've gotten the same error, but looking at the SAML tracer, I got a 404 error from aas/api/sessions ... 

 

GEThttps://abo-gallery.qa.bnymellon.net/gallery/lib/modernizr/modernizr.js

GEThttps://abo-gallery.qa.bnymellon.net/gallery/css/user-generated.css?v=12345

GEThttps://abo-gallery.qa.bnymellon.net/gallery/css/cloud.css?v=12345

GEThttps://abo-gallery.qa.bnymellon.net/gallery/css/cloud.header.css?v=12345

GEThttps://abo-gallery.qa.bnymellon.net/gallery/css/cloud.footer.css?v=12345

GEThttps://abo-gallery.qa.bnymellon.net/gallery/JSMap/css/production.css?v=12345

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/output/styles.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/collectionDetails/collectionDetails.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/collections/components/css/CollectionsList.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/collectionDetails/components/UserDetails/UserDetails.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/collectionDetails/components/SubscriptionDetails/subscriptionDetails.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/dataGrid/dataGrid.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/searchFilter/searchFilter.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/collectionDetails/components/WorkflowDetails/WorkerView.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/collectionDetails/components/InsightDetails/insightview.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/tabs/tabs.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/tabs/tab/tab.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/Backdrop/Backdrop.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/modal/modal.css

GEThttps://maxcdn.bootstrapcdn.com/font-awesome/4.6.1/css/font-awesome.min.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/JSMap/js/production.js?v=1234

GEThttps://abo-gallery.qa.bnymellon.net/gallery/ServerUI/dist/server-ui-common.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/ServerUI/dist/index.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/steal/steal.production.js?production/production.js?v=12345

GEThttps://abo-gallery.qa.bnymellon.net/gallery/ServerUI/dist/server-ui-common.js

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/output/commons.bundle.js

GEThttps://abo-gallery.qa.bnymellon.net/gallery/css/lato/Lato-Regular.woff2

GEThttps://abo-gallery.qa.bnymellon.net/gallery/production/production.js

GEThttps://abo-gallery.qa.bnymellon.net/gallery/css/lato/Lato-Regular.woff2

GEThttps://abo-gallery.qa.bnymellon.net/gallery/production/production.css

HEADhttps://abo-gallery.qa.bnymellon.net/gallery/?_=1664990169214

GEThttps://abo-gallery.qa.bnymellon.net/gallery/api/config/timezones/?_=1664990169215

GEThttps://abo-gallery.qa.bnymellon.net/gallery/api/apps/tags/

GEThttps://abo-gallery.qa.bnymellon.net/gallery/lib/polyfills/form.input.number.range.polyfill.js?_=1664990169216

GEThttps://abo-gallery.qa.bnymellon.net/gallery/api/navigation/?_=1664990169220

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/output/contentHeader.bundle.js?_=1664990169225

GEThttps://abo-gallery.qa.bnymellon.net/gallery/api/images/bannerimages/?_=1664990169228

GEThttps://abo-gallery.qa.bnymellon.net/gallery/css/lato/Lato-Bold.woff2

GEThttps://abo-gallery.qa.bnymellon.net/gallery/css/entypo/entypo.woff

GEThttps://abo-gallery.qa.bnymellon.net/gallery/css/montserrat/Montserrat-ExtraBold.woff2

GEThttps://abo-gallery.qa.bnymellon.net/gallery/api/apps/gallery/?search=&limit=12&offset=0&sortField=dateMadePublic&direction=desc&packageType=&_=1664990169230

GEThttps://abo-gallery.qa.bnymellon.net/gallery/css/lato/Lato-Bold.woff2

GEThttps://abo-gallery.qa.bnymellon.net/gallery/css/entypo/entypo.woff

GEThttps://abo-gallery.qa.bnymellon.net/gallery/css/montserrat/Montserrat-ExtraBold.woff2

GEThttps://abo-gallery.qa.bnymellon.net/gallery/img/loading-circle.gif

GEThttps://abo-gallery.qa.bnymellon.net/gallery/ServerUI/dist/IePolyfillPageContainer.js?_=1664990169233

GEThttps://abo-gallery.qa.bnymellon.net/aas/connect/authorize?nonce=efb243e8-491c-4b2f-88a7-775832b16dc3&state=50ea219a-ba0d-4b59-8eba-037972f7ccf6&client_id=alteryx&redirect_uri=https%3A%2F%2Fabo-gallery.qa.bnymellon.net%2Fgallery%2F%23!sso%2F%3F&response_type=id_token%20token&scope=openid%20alteryxApi

GEThttps://abo-gallery.qa.bnymellon.net/aas/login?signin=fa96c28f77975b74cd2f48ece5822a68

GEThttps://abo-gallery.qa.bnymellon.net/aas/external?provider=SAML2&signin=fa96c28f77975b74cd2f48ece5822a68

GEThttps://fsso.qa.bnymellon.net/affwebservices/public/saml2sso?SAMLRequest=lZFPSwMxEMXvhX6HkHs3f9xWDG1hsZdCvbTqobdJzNqFbLLNZNV%2Be%2BNW0YIIXmfe7817zByhdbJTVZ8OfmuPvcVE3lrnUZ03C9pHrwJgg8pDa1Elo3bV3UbJgqsuhhRMcPQn8zcCiDamJnhK1qsFbZ5m2mp5xUXNTV1yAzelBCjrqSwFF1PQlDzaiBlY0MxnCrG3a48JfMojLuVE8Amf3otrJWZKyD0lq1yj8ZAG6pBSh4qxGjEURyi0P7XWueALbxODun61Omd6aYxF1vXaNYYNRbKekuor723w2Lc27s7Sh%2B3m2xp0mDyDczaefrkAyHYffqwySJfjESHzwV8NVeLyfy5zdgGPR5%2BDyycu3wE%3D&RelayState=fmBV4HxKAjq5KSneX8jXwPFJ

POSThttps://abo-gallery.qa.bnymellon.net/aas/Saml2/Acs

GEThttps://abo-gallery.qa.bnymellon.net/aas/callback

GEThttps://abo-gallery.qa.bnymellon.net/aas/connect/authorize?nonce=efb243e8-491c-4b2f-88a7-775832b16dc3&state=50ea219a-ba0d-4b59-8eba-037972f7ccf6&client_id=alteryx&redirect_uri=https%3A%2F%2Fabo-gallery.qa.bnymellon.net%2Fgallery%2F%23!sso%2F%3F&response_type=id_token%20token&scope=openid%20alteryxApi

GEThttps://abo-gallery.qa.bnymellon.net/gallery/#!sso/?id_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJodHRwczovL2Fiby1nYWxsZXJ5LnFhLmJueW1lbGxvbi5uZXQvYWFzIiwiYXVkIjoiYWx0ZXJ5eCIsImV4cCI6MTY2NDk5MDQ3MywibmJmIjoxNjY0OTkwMTczLCJub25jZSI6ImVmYjI0M2U4LTQ5MWMtNGIyZi04OGE3LTc3NTgzMmIxNmRjMyIsImlhdCI6MTY2NDk5MDE3MywiYXRfaGFzaCI6Ind0ejdrRng4cXlSSUNkSDE3eThTOGciLCJzdWIiOiI5YzQwZDkyZThjMDMzMDI4ZDFlODc1ZGJiMDRhZjhkNyIsImF1dGhfdGltZSI6MTY2NDk5MDE3MywiaWRwIjoiU0FNTDIiLCJhbXIiOlsiZXh0ZXJuYWwiXX0.66SXhR85JL5vYuVG4CXRh8srWNGogR51SIIU8dfkuiM&access_token=30c9a358a38dbae2a4dd48e174e8fb22&token_type=Bearer&expires_in=30&scope=openid%20alteryxApi&state=50ea219a-ba0d-4b59-8eba-037972f7ccf6

GEThttps://abo-gallery.qa.bnymellon.net/gallery/lib/modernizr/modernizr.js

GEThttps://abo-gallery.qa.bnymellon.net/gallery/css/user-generated.css?v=12345

GEThttps://abo-gallery.qa.bnymellon.net/gallery/css/cloud.css?v=12345

GEThttps://abo-gallery.qa.bnymellon.net/gallery/css/cloud.header.css?v=12345

GEThttps://abo-gallery.qa.bnymellon.net/gallery/css/cloud.footer.css?v=12345

GEThttps://abo-gallery.qa.bnymellon.net/gallery/JSMap/css/production.css?v=12345

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/output/styles.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/collectionDetails/collectionDetails.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/collections/components/css/CollectionsList.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/collectionDetails/components/UserDetails/UserDetails.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/collectionDetails/components/SubscriptionDetails/subscriptionDetails.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/dataGrid/dataGrid.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/searchFilter/searchFilter.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/collectionDetails/components/WorkflowDetails/WorkerView.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/collectionDetails/components/InsightDetails/insightview.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/tabs/tabs.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/tabs/tab/tab.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/Backdrop/Backdrop.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/common/modal/modal.css

GEThttps://maxcdn.bootstrapcdn.com/font-awesome/4.6.1/css/font-awesome.min.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/JSMap/js/production.js?v=1234

GEThttps://abo-gallery.qa.bnymellon.net/gallery/ServerUI/dist/server-ui-common.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/ServerUI/dist/index.css

GEThttps://abo-gallery.qa.bnymellon.net/gallery/steal/steal.production.js?production/production.js?v=12345

GEThttps://abo-gallery.qa.bnymellon.net/gallery/ServerUI/dist/server-ui-common.js

GEThttps://abo-gallery.qa.bnymellon.net/gallery/js/ReactComponents/output/commons.bundle.js

GEThttps://abo-gallery.qa.bnymellon.net/gallery/css/lato/Lato-Regular.woff2

GEThttps://abo-gallery.qa.bnymellon.net/gallery/production/production.js

GEThttps://abo-gallery.qa.bnymellon.net/gallery/production/production.css

HEADhttps://abo-gallery.qa.bnymellon.net/gallery/?_=1664990174357

GEThttps://abo-gallery.qa.bnymellon.net/gallery/api/config/timezones/?_=1664990174358

GEThttps://abo-gallery.qa.bnymellon.net/gallery/api/apps/tags/

GEThttps://abo-gallery.qa.bnymellon.net/gallery/lib/polyfills/form.input.number.range.polyfill.js?_=1664990174359

GEThttps://abo-gallery.qa.bnymellon.net/gallery/api/navigation/?_=1664990174363

POSThttps://abo-gallery.qa.bnymellon.net/aas/api/sessions

GEThttps://abo-gallery.qa.bnymellon.net/gallery/css/mon

 

    {

      "method": "POST",

      "url": https://abo-gallery.qa.bnymellon.net/aas/api/sessions,

      "requestId": "8067",

      "requestHeaders": [

        {

          "name": "sec-ch-ua",

          "value": "\"Chromium\";v=\"106\", \"Google Chrome\";v=\"106\", \"Not;A=Brand\";v=\"99\""

        },

        {

          "name": "sec-ch-ua-mobile",

          "value": "?0"

        },

        {

          "name": "Authorization",

          "value": "Bearer 30c9a358a38dbae2a4dd48e174e8fb22"

        },

        {

          "name": "User-Agent",

          "value": "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36"

        },

        {

          "name": "Accept",

          "value": "*/*"

        },

        {

          "name": "cache-control",

          "value": "no-cache"

        },

        {

          "name": "X-Requested-With",

          "value": "XMLHttpRequest"

        },

        {

          "name": "sec-ch-ua-platform",

          "value": "\"Windows\""

        },

        {

          "name": "Origin",

          "value": https://abo-gallery.qa.bnymellon.net

        },

        {

          "name": "Sec-Fetch-Site",

          "value": "same-origin"

        },

        {

          "name": "Sec-Fetch-Mode",

          "value": "cors"

        },

        {

          "name": "Sec-Fetch-Dest",

          "value": "empty"

        },

        {

          "name": "Referer",

          "value": https://abo-gallery.qa.bnymellon.net/gallery/

        },

        {

          "name": "Accept-Encoding",

          "value": "gzip, deflate, br"

        },

        {

          "name": "Accept-Language",

          "value": "en-US,en;q=0.9"

        },

        {

          "name": "Cookie",

          "value": "SignInMessage.aea55ccab02de24d5e6c9bee0e0a3764={hash:0551b5e06bc0419ba26e15fdcfe5aa8a2497b1672627dd06338cb6bbafa1d656}; idsvr.session={hash:f2d5d5d8f034a2a30e1e51bcb4fc214981577a3bbcf58e4107e5159ae47d6dfd}; idsrv={hash:0caa0401ca5face606ceec16897cfb18432a4e0fb981395949b9ef692bf2c453}; _ga={hash:a46f6c24582cfc47b310bc981bac62afd1220daa578f606f02f35ee608eb3536}; _gid={hash:eb29ab732ba7536fd2116590808d70b8424e6fadc0d811a2bcbb8fc76846fca2}; smauthstatus={hash:5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9}; Saml2.x0kqPq1ZJyhgGCSqyxabhq6p={hash:9e50858f90934675c11aac7de9bdb4352b8f2b70a91d927d7132dc747e289c3f}; subscriptionRemoval={hash:b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b}; SMSESSION={hash:0cfa69d4a638e6333bfac8f9b3e7a1660d0139a5a2a631d7ad99065a22be1f8b}"

        }

      ],

      "responseStatus": 404,

      "responseStatusText": "HTTP/1.1 404 Not Found",

      "responseHeaders": [

        {

          "name": "Content-Length",

          "value": "43"

        },

        {

          "name": "Content-Type",

          "value": "application/json; charset=utf-8"

        },

        {

          "name": "Server",

          "value": "Microsoft-HTTPAPI/2.0"

        },

        {

          "name": "Access-Control-Allow-Origin",

          "value": "*"

        },

        {

          "name": "Date",

          "value": "Wed, 05 Oct 2022 17:16:14 GMT"

        }

      ]

    },

Reply
0 Likes
server new user guide
Labels
Top Solution Authors
View All