Identity Management (MOSC)

MOSC Banner

SSO Configuration with OHS12c, MFT12c and Azure AD

edited Dec 24, 2025 9:41PM in Identity Management (MOSC) 3 commentsAnswered

HI All,

We have SSO implemented for /mftconsole between Oracle MFT 12c and Azure AD. In the current setup where the request flow is F5 → MFT 12c, SSO works as expected. F5 contains all the cluster nodes exmpale:mft1:7021,mft2:7021…

We now need to introduce OHS 12c as an application load balancer, changing the flow to F5 → OHS 12c → MFT 12c cluster. With this configuration, SSO works only when one MFT node is up. When all nodes in the MFT cluster are running, SSO fails and we see the following error.

"<BEA-000000> <exception info
org.opensaml.saml.common.SAMLException: [Security:096554]Cannot find request for InResponseTo: _2f50eb92-5f31-4f15-b7c0-73b4058e22fe in response."

Howdy, Stranger!

Log In

To view full details, sign in to My Oracle Support Community.

Register

Don't have a My Oracle Support Community account? Click here to get started.

Category Leaderboard

Top contributors this month

Instructions for posting

×

1. Select a discussion category from the picklist.


2. Enter a title that clearly identifies the subject of your question.


3. In the body, insert detailed information, including Oracle product and version.


Please abide by the Oracle Community guidelines and refrain from posting any customer or personally identifiable information (PI/CI).


Cloud / Fusion customers - Our Cloud community has moved! Please go to Cloud Customer Connect .


New to My Oracle Support Community? Visit our Welcome Center

MOSC Help Center