Access Manager 4.4.2 Admin Console cannot import SAML2 SP metadata including <RequestedAttribute>

  • 7023423
  • 04-Oct-2018
  • 04-Oct-2018

Environment

Access Manager 4.4.2
Access Manager Console 4.4.2

Situation

  • trying to import a SAML2 Service Provider metadata document fails with the error:

    java.lang.NoSuchMethodError: internal.atlaslite.jcce.xml.w3c.XMLUtil.getElementTextContent(Lorg/w3c/dom/Element;)Ljava/lang/String;

        at com.novell.nidp.saml2.assertion.SAML2Attribute.parse(y:445)

        at com.novell.nidp.common.xml.w3c.XMLBase.<init>(y:2685)

  • importing the metadata after removing the removing the "<AttributeConsumingService>" section the metadata import worked

  • The problem does not happen with a NAM 4.4.2 Appliance (SingleBox) or NAM 4.3.3

Resolution

  • cp /opt/novell/devman/nam_tools/lib/nidp.jar /var/opt/novell/iManager/nps/WEB-INF/lib/nidp.jar

  • The issue has been addressed to engineering for future releases of NAM




Cause

The SAML2Attribute is part of the "nidp.jar" located at: /var/opt/novell/iManager/nps/WEB-INF/lib/. The jar file has not been updated by the SP2 upgrade process