I am trying to use salesforce federated single signon feature. I am using Glassfish server and OpenSSO 8.0
While logging in using OpenSSO, I am getting the following error:
Login Error Your login attempt using single sign-on with an identity
provider certificate has failed. Please contact your salesforce.com
administrator for more information.
Can anyone suggest any solution regarding this ?
Best Answer
In the org, go to Setup | Security Controls | Single Sign-On Settings and click the SAML Assertion Validator button. If the SSO attempt got as far as your org, you should see something there that will lead you towards identifying the problem.
If there is nothing listed in the SAML Assertion Validator, then Salesforce is not able to identify the correct org from the assertion. Go into the OpenSSO logs, copy the SAML assertion, and paste it into the SAML Assertion Validator. Again, this should lead you towards resolution.