How to generate a SAML tracer

How to generate a SAML tracer

17321
Created On 03/27/22 22:29 PM - Last Modified 04/29/23 19:38 PM


Objective


To extract SAML tracer for the SSO login issues. This file is the key to find-out the issue behind the various types of login issues. 

Environment


  • Prisma Cloud
  • SAML extension plugin for Google Chrome

Procedure


Steps to follow:

  1. Add the SAML tracer plugin from the below link to your browser
  1. SAML assertion can be provided by user facing issue by adding this blue color SAML extension here -
  • Go to 3 dots on the right side of URL > More tools > Extensions > Go to Details of SAML Message Decoder and click on Details & Enable "Allow in Incognito"
  • Now, Go to Prisma Cloud and close all the tabs and make a fresh login to Prisma Cloud so that the SAML tracer can capture the logs.
  • Once user has tried logging- in, click on ‘Copy the message’ on top right and request the user facing issue to send the assertion by pasting it on any text file or word document.
  • Attach that file to the support case file

Additional Information


For login issues with SAML tracer kindly share the screenshots of the Settings page of your IDP and Prisma Cloud. 
 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000oNU4CAM&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language