VMware Workspace ONE Community
JumpyJW
Enthusiast
Enthusiast
‎09-18-2014 11:44 PM
Jump to solution

Workspace 2.1 - Incorrect issuer in SAML AuthnRequest.

Hi,

Just wondering if anyone knows how I can overcome this problem.

After the initial configuration on Workspace 2.1, I'm getting the following error when I access the main workspace page. I don't even get a chance to get prompted for logon name etc.

Error

Incorrect issuer in SAML AuthnRequest.


I can get to the following URL fine

https://workspacefqdn:8443


I can also get to the Appliance Configurator and Connector services Admin page fine.

Tags (1)
1 Solution

Accepted Solutions
RaviChayanam
VMware Employee
VMware Employee
‎09-22-2014 09:00 PM
Jump to solution

When you run the hostname command on the console as root, does it return the shortname like myhostname or does it return fqdn like myhostname.mydomain? It is supposed to return myhostname.mydomain and not myhostname. If it returns myhostname, please change the hostname to myhostname.mydomain by running yast.

View solution in original post

0 Kudos
9 Replies
RaviChayanam
VMware Employee
VMware Employee
‎09-19-2014 08:04 AM
Jump to solution

What is your workspace appliance hostname. You can find it by looking at your /etc/hosts file or by running the hostname command. Also when you go to https://workspacefqdn:8443/ you should be redirected to https://workspacefqdn:8443/cfg/shortcuts and there should be a link for "Workspace Admin Console" can you click on that and see if that works?

0 Kudos
JumpyJW
Enthusiast
Enthusiast
‎09-20-2014 05:09 AM
Jump to solution

I checked the hostname in /etc/hosts and it's correct.

I can access https://workspacefqdn:8443/ fine and it does redirect me to https://workspacefqdn:8443/cfg/shortcuts. As I mentioned in my original post, I can access all the links except for "Workspace Admin Console" which will throw the error "Incorrect issuer in SAML AuthnRequest"

0 Kudos
RaviChayanam
VMware Employee
VMware Employee
‎09-21-2014 09:05 AM
Jump to solution

Hello

Is the hostname set to workspacefqdn?

Can you try two more things please

1. Try to go to https://workspacefqdn/SAAS/login/0 and login as admin/<admin password you set> - this is the same password you use to login to Appliance Configurator and Connector Admin

2. Login to Connector Admin at https://workspacefqdn:8443/hc/admin/ and you will land on "About" tab. If not, please go to "About" tab. Find the line that says "The workspace server is" and you will see a URL there. Is that https://workspacefqdn or is that different?

0 Kudos
JumpyJW
Enthusiast
Enthusiast
‎09-22-2014 08:54 PM
Jump to solution

1. https://workspacefqdn/SAAS/login/0 - This works and I can login using admin/<adminpassword>

2. https://workspacefqdn:8443/hc/admin/ - This works and I can confirm the <workspacefqdn> is correct.

0 Kudos
RaviChayanam
VMware Employee
VMware Employee
‎09-22-2014 09:00 PM
Jump to solution

When you run the hostname command on the console as root, does it return the shortname like myhostname or does it return fqdn like myhostname.mydomain? It is supposed to return myhostname.mydomain and not myhostname. If it returns myhostname, please change the hostname to myhostname.mydomain by running yast.

0 Kudos
JumpyJW
Enthusiast
Enthusiast
‎09-22-2014 09:05 PM
Jump to solution

It returns <hostname>.<domainname> correctly and identical to <workspacefqdn>.

JumpyJW
Enthusiast
Enthusiast
‎09-22-2014 09:29 PM
Jump to solution

Hi Ravi

Thanks for your support. I noticed my hostnames were in UPPERCASE so I ran 'yast' and updated them all to lowercase and rebooted the appliance.

After the reboot, I am able to login and not getting the SAML AuthnRequest error anymore! Probably good feedback to the development team to not allow UPPERCASE to avoid such trivial problem.

aaronb123
Contributor
Contributor
‎09-26-2014 10:32 AM
Jump to solution

This was my exact issue. Uppercase letters in my hostname but was typing all lower case in browser. However, the error still occurred when I used the IP directly.

I made the change to all lowercase with yast and rebooted and was about to login! Smiley Happy

Thanks guys

0 Kudos
ChrisBCarlson
Enthusiast
Enthusiast
‎10-24-2014 09:01 AM
Jump to solution

and FYI if you dont know what YAST is do this to change you're hostname to lowercase:

open console window

Login as root

type "yast"

navigate to "network services>hostnames" hit enter

use alt + the highlighted letter to select the option for example

alt+e will edit the ip addresses yast1.pngyast2.png

0 Kudos