An internal error has occurred - "Could not process response from SAML identity provider"

stayen · March 1, 2021, 12:40pm

I am trying to set up an ADFS identity provider based upon this blog post.

Finally, I manage to log on at ADFS, but after redirecting to Keycloak, I see a page with

“An internal error has occurred”

message. In the server logs I see:

ERROR [org.keycloak.services.error.KeycloakErrorHandler] (default task-1) Uncaught server error: org.keycloak.broker.provider.IdentityBrokerException: Could not process response from SAML identity provider.

The SAML response itself doesn’t look too broken. How can I debug this problem?

sleivo · April 12, 2021, 3:19pm

Did you get this resolved? I´m facing the same issue.

stayen · April 13, 2021, 10:52am

The problem was that attempts to log on at ADFM portal not initiated by service provider, resulted in Keycloak not being able to decide what to do (thus the reported error).

Finally, I managed to set up ADFS identity provider at Keycloak and managed to make SSO work on Drupal.

Topic		Replies	Views
IDP initiated SSO from ADFS (Active Directory Federation Service) to Keycloak is having error Getting advice authentication , identity-brokering , user-federation , saml	2	550	November 17, 2023
ADFS Identity Provider SSO Fails after Upgrade to 21.0.2	1	713	April 20, 2023
Could not process response from SAML identity provider Getting advice saml	6	1614	May 11, 2023
"invalid Federated Identity Action Message" while connecting with SAML based IdP Getting advice authentication , client-configuration , identity-brokering , saml	5	3602	February 3, 2022
Keycloak as SAML sp - login loop on failure saml	2	2038	June 8, 2021

An internal error has occurred - "Could not process response from SAML identity provider"

Related Topics