Cisco Cisco Unified Contact Center Express 9.0(1) Troubleshooting Guide
Contents
Introduction
Prerequisites
Requirements
Components Used
Background Information
Applications and logs that can be handy in debugging
Flow Diagram with Debugging options
Authcode Request Processing by Cisco IdS
Common Errors Encountered during this Process
1. Client Registration Not Done
2. User Accesses Application using IP Address/ Alternate Host Name
SAML Request Initiation by Cisco IdS
Common Errors Encountered during this Process
1. AD FS Metadata not added to Cisco IdS
SAML Request Processing by AD FS
Common Errors Encountered during this Process
1. AD FS not having the latest Cisco IdS’ SAML certificate.
SAML Response Sending by AD FS
Common Errors Encountered during this Process
1. Form Authentication is not enabled in AD FS
SAML Response Processing by Cisco IdS
Common Errors Encountered during this Process
1. AD FS Certificate in Cisco IdS is not the latest.
2. Cisco IdS and AD FS clocks are not Synchronized.
3. Wrong Signature Algorithm (SHA256 vs SHA1) in AD FS
4. Outgoing Claim Rule not Configured Correctly
5. Outgoing Claim Rule is not configured correctly in a Federated AD FS
6. Custom Claim Rules not Configured Correctly
7. Too Many Requests to AD FS.
8. AD FS is not Configured to Sign both Assertion and Message.
Related Information
Introduction
The Security Assertion Markup Language (SAML) interaction between Cisco Identity Service (IdS)
and Active Directory Federation Services (AD FS) via a browser is the core of Single-Sign on
(SSO) log in flow. This document will help you in debugging issues related to configurations in
Cisco IdS and AD FS, along with the recommended action to resolve them.
and Active Directory Federation Services (AD FS) via a browser is the core of Single-Sign on
(SSO) log in flow. This document will help you in debugging issues related to configurations in
Cisco IdS and AD FS, along with the recommended action to resolve them.
Cisco IdS Deployment Models
Product Deployment
UCCX
UCCX
Co-resident