Environment
- App Control (Formerly CB Protection) Server: 8.1.0 and Higher
- SAML
Objective
The purpose of this article is to capture diagnostic files during SAML integration troubleshooting to assist in resolution.
Resolution
- On the Application Server navigate open the file - "\Program Files (x86)\Bit9\Parity Console\WebUI\html\login.php"
- Find the line: $lastSAMLResponse = $_SESSION['lastSAMLResponse'] and add this line bellow it, so it looks like this:
$lastSAMLResponse = $_SESSION['lastSAMLResponse'];
error_log($lastSAMLResponse);
- Log into the App Control Web Console and navigate to the "Support.php" page:
- https://servername/support.php
- Select "Snapshot Server Logs"
- Set Logging Duration: 30 Min
- Debug Level: High
- Reporter Level: High
- Script Level: High
- Select "Start Logging"
- Reproduce by logging in via SAML multiple times and getting an error
- Select "Stop Logging Now "
- Revert the changes in the "login.php" file.
- Go to Tools > Requested Files > Download the latest files
- Please zip up the diagnostics files along with a scrubbed version of the metadata.xml (remove cert info)
- Send to Cb Vault and note the case for review.
Additional Notes
Related Content