cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

AMA-CUCM Troubleshooting: Best Practices for Reading Trace Files

591
Views
0
Helpful
4
Replies
Highlighted
Enthusiast

SAML error on login to CI site

Hi


We setup our new CI site with a SAML IdP. Yet, when a user tries to login we get "returnURL is not allowed" as an error.


We can't seem to find any documentation regarding this error.


Can anyone provide more info as to what this error means? And in general, where can we refer to for SAML error codes for the CI site?


Thanks


Jacov

Everyone's tags (2)
4 REPLIES 4
Cisco Employee

Re: SAML error on login to CI site

Hi Jacov,

There is a test function from within Cisco Spark Control Hub that allow you to test that the SSO config is correct for your IdP. Curious to know if the test worked for you?

Enthusiast

Re: SAML error on login to CI site

Hi Charlie

Hope all is well, thanks for your reply.

We're in fact getting this error in the Control Hub. Please see below.

After uploading the XML, we get the Test SSO Connection screen.

Untitled.png

This takes us to our LDAP login screen

Untitled.png

When entering our credentials and trying to login we get the error.

Untitled.png

More annoyingly, the official documentation https://collaborationhelp.cisco.com/article/en-us/WBX68460 doesn't have this error listed, as well as other errors which we have run into but were able to figure out.

But in any case, this looks like the pre-CI WebEx SAML documentation. Any idea where we could get updated documentation for CI?

Thanks

Jacov

Cisco Employee

Re: SAML error on login to CI site

Jacov, what IdP are you using here?

Please take a look at https://collaborationhelp.cisco.com/article/en-us/lfu88u as the services may be a little different here from the normal WebEx SSO deployment

Enthusiast

Re: SAML error on login to CI site

Charlie

We're using our proprietary IdP, which some of our customers are using to connect to Webex and Jabber (and works with those services).

With the shift to CI we're trying to get our IdP to work with CI as well. We looked into the CI documentation, but as above can't get it to work, and can't figure out from the error messages where we may have missed something.

CreatePlease to create content
Content for Community-Ad
August's Community Spotlight Awards