This topic tells you how to resolve common errors that arise when configuring a single sign-on partnership between PingOne Cloud and Single Sign‑On for VMware Tanzu Application Service.

Error

Symptom

You see an error similar to the following screenshot:

The error message page reads, Error. Oops. We're unable to process the SSO request. The request contains an invalid SP entityid or idpid. Check that your registration is complete and the connection to PingOne is not deactivated.

Explanation

Possible explanations are as follows:

  • Single sign-on is deactivated on PingOne.

  • The service provider Entity ID is misconfigured on PingOne.

  • The identity provider Single Sign-On URL is misconfigured in the Single Sign‑On plan settings.

Something went amiss

Symptom

You see an error similar to the following screenshot:

The error message page reads, Uh oh. Something went amiss.

Explanation

The service provider Assertion Consumer Service (ACS) is misconfigured on PingOne.

Metadata Not Found

Symptom

You see an error similar to the following screenshot:

The error message page reads, Metadata for issuer https://pingone.com/idp/cd-2128514304.pivotal wasn't found.

Explanation

The identity provider Entity ID is misconfigured in the Single Sign‑On plan settings.

Missing Name ID

Symptom

You see an error similar to the following screenshot:

In the Identity provider metadata section of a plan pane, the error message below the Fetch Metadata button reads: Error processing metadata.

Explanation

The identity provider metadata is missing configurations for Name ID. See Configure Identity Provider Metadata.

check-circle-line exclamation-circle-line close-line
Scroll to top icon