If you cannot sign on using an identity provider, there are two
possibilities:
- Certificates for Common Services were updated.
In this scenario, if you cannot log in using an identity provider, the following message is output to
in the AD FS event log:ID6013: The signature verification failed
For details on what to do when this message is output, see Updating the Common Services metadata by using AD FS.
- Certificates for AD FS were updated.
In this scenario, if you cannot log in using an identity provider, the following message is output Common Services log file (default: /var/log/hitachi/CommonService/idp/log/server.log):
ERROR [org.keycloak.broker.saml.SAMLEndpoint] (default task-14) validation failed
For details on what to do when this message is output, see Specifying the AD FS metadata endpoint by using Common Services.