Andrew Wood
Activity overview
Latest activity by Andrew Wood-
Andrew Wood created an article, PEAP RADIUS ERROR EAPSession: Failed to load SSL Session
Version Affected: 22 Description: Our more recent RADIUS servers support PEAP. However, when trying to connect, you see this error in the RADIUS logs ERROR EAPSession: Failed to load SSL Sessio...
-
Andrew Wood created an article, SAML Consumer with SP Init Realms
Version Affected: All Description: When Federating with another IdP, if the Users don't already exist in a Datastore connected to SecureAuth, you need to set the DataStore to No Data Store. Wit...
-
Andrew Wood created an article, Enforce Password Change and Minimum Password Age
Version Affected: 20.06+ Description: From 20.06 HF11 onwards, we introduced a fix to prevent Users from bypassing the minimum password age setting in AD. Prior to this, the Enforce Password ch...
-
Andrew Wood created an article, How to increase the allowed clock skew for API calls
Version Affected: All Description: We have a default clock skew of 1 minute for calls to the Authentication API. This should be sufficient and we don't recommend increasing it. Instead, all th...
-
Andrew Wood created an article, Internal: Connector Config Decrypt
Version Affected: All Description: When troubleshooting Connector issues, it's sometimes helpful to be able to decrypt the Connector Config so that you can see if the correct settings have been ...
-
Andrew Wood created an article, Wrong ACS URL when setting SAML SSO
Version Affected: All Description: When configuring SAML SSO Identity Provider, the ACS URL in the UI is different to the ACS URL in the Metadata Cause: There is a bug with Vanity domains th...
-
Andrew Wood created an article, How to avoid duplicate realms for IWA and MFA users
Version Affected: All Description: For On Prem/Hybrid customers who do not have both DMZ and Internal IdPs, there has always been an issue with allowing IWA/Windows SSO for the internal users bu...
-
Andrew Wood created an article, OIDC Revoke Permissions screen
Version Affected: All Description: Users complain that they see the Revoke Permissions screen instead of the App after they login to an OIDC app. Cause: The OIDC Query String is missing from t...
-
Andrew Wood created an article, Invalid User, Incorrect Group or Error Retrieving Contact information on New Experience Realms
Version Affected: 23.07 Description: In 23.07 using a New Experience application that has multiple Datastores listed a sporadic error occurs of either Invalid User, Incorrect Group or Error Retr...
-
Andrew Wood created an article, SAML Error: Error Has Been Logged / Keyset does not exist
Version Affected: All Description: When accessing a SAML realm, the Users see an error "Error has been logged" this message is generic and can be caused by several different reasons. Looking in ...