Single Sign-On for Tanzu 1.15

Troubleshooting

Last Updated October 29, 2024

This topic tells you how to resolve common errors that arise when configuring a single sign-on partnership between PingOne Cloud and Single Sign‑On for VMware Tanzu Application Service.

Error

Symptom

You see an error similar to the following screenshot:

The error message page reads,
Error. Oops. We're unable to process the SSO request. The request contains an invalid
SP entityid or idpid. Check that your registration is complete and the connection to
PingOne is not deactivated.

Explanation

Possible explanations are as follows:

  • Single sign-on is deactivated on PingOne.

  • The service provider Entity ID is misconfigured on PingOne.

  • The identity provider Single Sign-On URL is misconfigured in the Single Sign‑On plan settings.

Something went amiss

Symptom

You see an error similar to the following screenshot:

The error message page reads, Uh oh. Something went amiss.

Explanation

The service provider Assertion Consumer Service (ACS) is misconfigured on PingOne.

Metadata Not Found

Symptom

You see an error similar to the following screenshot:

Explanation

The identity provider Entity ID is misconfigured in the Single Sign‑On plan settings.

Missing Name ID

Symptom

You see an error similar to the following screenshot:

Explanation

The identity provider metadata is missing configurations for Name ID. See Configure Identity Provider Metadata.