1. 主页
  2. 支持
技术文章 - CS347636

在 Windchill SSO 环境中输入凭据后,出现错误“解密断言失败:解密时出现 XMLSecurity 异常:OpenSSL:SymmetricKey::decryptFinish - 最终块中的填充值超出范围”

已修改: 04-Oct-2024   


注意:本文已使用机器翻译软件翻译,以方便非英语客户阅读。但翻译内容可能包含语法错误或不准确之处。请注意, PTC对本文所含信息的翻译准确性及使用后果不承担任何责任。请在 此处 查看本文的英文原始版本以便参考。有关机器翻译的更多详情,请单击 此处
感谢您告诉我们。我们将尽快审阅此译文。

适用于

  • Windchill PDMLink 11.2 to 12.1
  • Windchill SSO configured with (Windchill + Shibboleth) <==> PingFederate <==> WindchillDS
  • Windchill SSO configured with (Windchill + Shibboleth) <==> ADFS

说明

  • 在 Windchill SSO 环境中输入凭据后,shibd.log 中出现以下错误:
DEBUG OpenSAML.SecurityPolicyRule.XMLSigning [1] [default]: validating signature profile
DEBUG XMLTooling.TrustEngine.ExplicitKey [1] [default]: attempting to validate signature with the peer's credentials
DEBUG XMLTooling.TrustEngine.ExplicitKey [1] [default]: signature validated with credential
DEBUG OpenSAML.SecurityPolicyRule.XMLSigning [1] [default]: signature verified against message issuer
DEBUG Shibboleth.SSO.SAML2 [1] [default]: processing message against SAML 2.0 SSO profile
DEBUG XMLTooling.CredentialCriteria [1] [default]: usage didn't match (4 != 3)
DEBUG XMLTooling.CredentialCriteria [1] [default]: key algorithm didn't match ('AES' != 'RSA')
DEBUG XMLTooling.CredentialCriteria [1] [default]: usage didn't match (4 != 3)
WARN XMLTooling.Decrypter [1] [default]: XMLSecurity exception while decrypting key: OpenSSL:RSA privateKeyDecrypt - Error removing OAEPadding
WARN XMLTooling.Decrypter [1] [default]: unable to decrypt key, generating random key for defensive purposes
ERROR Shibboleth.SSO.SAML2 [1] [default]: failed to decrypt assertion: XMLSecurity exception while decrypting: OpenSSL:SymmetricKey::decryptFinish - Out of range padding value in final block
  • 登录时 Windchill UI 出现错误
图片.png
这是文章 347636 的 PDF 版本,可能已过期。最新版本 CS347636