Hi All,
Any has tried Directory server 10.3 Single Sign feature with ADFS Successfully. We are in the process of trying SSO initially with Web Access. But still struggling to get over it. Both are in 2 different servers, and LFDS and LFDSSTS are in the same machine.
Every time the Directory server login happens, the below error is noted in LFDS System event log:
A fatal error occurred while creating a TLS server credential. The internal error state is 10013.
Meantime the below error is seen in WebAccess server logs:
Message: The token XML does not appear to be valid.
Parameter name: tokenXml
Stack trace: at Laserfiche.SecurityTokenService.Ticket..ctor(String tokenXml)
at Laserfiche.WebAccess.Common.ConnectionManager.AuthenticateSessionWithClaims(Session sess, RepositoryRegistration repoReg, ClaimsIdentity claimsId)
at Laserfiche.WebAccess.Common.ConnectionManager.AutoLogon(String repoName, HttpContext context, Boolean forceLogin, WARepository waRepo)
at Laserfiche.WebAccess.Common.ConnectionManager.<>c__DisplayClass46_0.<CheckConnectedInternal>b__1()
Certificates are installed and access to certificates also provided. Any one has configured Directory Server SSO feature with LFDS 10.3 by allowing only TLS 1.2? (TLS 1.0 and 1.1 are disabled in our environment)
Regards
Kirubaa