SP initiated SAML with SailPoint IdentityIQ and ping! Federate

The actual version of SailPoint (6.3p3) contains an issue that will break SP initiated SAML authentication with ping! Federate.

When the request is created, SailPoint uses the Entity ID value also as the value for the SPNameQualifier. Federate will try to find an affiliation with this name, but cannot find it. When you try to create an affiliation in Federate, it will not work because NameQualifier and Entity ID are equal.

Unfortunately, this cannot be fixed since this is hardcoded behavior in both products. SailPoint is aware of this behavior and will release a fix with 6.3p4.

Mario Enrico Ragucci
Solution Architect at SailPoint Technologies
Sozial angepasster Nerd mit einem Faible für Technologie. Ich beschäftige mich auf der Arbeit und im privaten Bereich mit Anwendungen, die unser Umfeld beeinflussen, und der Infrastruktur, die solche Anwendungen erst ermöglichen.