Introducing the all-new TIBCO Community site!

For current users, please click "Sign In" to reset your password and access the enhanced features. If you're a first-time visitor, we extend a warm welcome—click "Sign Up" to become a part of the TIBCO Community!

If you're seeking alternative community sites, explore ibi, Jaspersoft, and Spotfire.

Jump to content

webservice API using SAML

Manoj Chaurasia

Recommended Posts

Hello everybody,


We have developped our custome application to communicate with AMX BPM 2.1 with the hotfix10.

To do so, we have implemented SAML for all our webservice calls.


All worked fine until we install AMX BPM hotfix11 (In the change logs they don't mention anything about SAML or SSL).

My trueStrore, keyStore, mutuelIdProvider are all the same and we didn't changed them.


Now we are getting this error :


04 Nov 2013 13:19:46,225 [httpConnector_24] [ERROR] - TIBCO-OGS_PA-901753: Verify Authentication failed. An unsigned SAML present when signature is required.


Any clue please




We are using SAML 1.0 and I thik that the new hotfix10 make it impossible to use other than SAML 2.0.

I have found this in the BPM 2.2 doc :



If you want to use SAML authentication, you

must also supply an appropriate SAML 2.0

assertion to identify the user to be authen



Our current assertion is for SAML 1.0 :














I tried to adapt it for SAML 2.0 using the BPM Developper's guid but it says this :

Unable to identify the user making a service request. [null,null]



Issam Jo

Link to comment
Share on other sites

  • 6 years later...

Hi issamjo,


Can you please share with us how you implemented that

I implement my own code to generate the saml assertion but I don't found a way on how we can pass it to the header of the SOAP request Reply activity.


can you please help on that or giving us an example.


Regards & thanks


Link to comment
Share on other sites

  • Create New...