QRadar SOAR: Enabling SAML is not possible with some top level domains

Troubleshooting

Problem

The use of certain top level domains (TLDs) in URLs used in commands to enable SAML causes a configuration error and the SAML configuration is not saved.

Symptom

The following error is returned running a resutil samledit command, when a domain is used that is not one of the most frequently used TLDs.

An error occurred while running the command line utility: Invalid URL provided: https://idp.domain.abc

Cause

IBM Security QRadar SOAR validates the domain against a list of domains. Domains such as .isr or .local fail the validation.

Resolving The Problem

If you are using TLDs that are not commonly used, repeat the command with the -nourlcheck parameter.

sudo resutil samledit -alias soar -org SOC -loginurl https://idp.domain.abc -idpmetadataurl https://idp.domain.abc/metadata.xml -nourlcheck

Document Location

Worldwide

[{"Type":"MASTER","Line of Business":{"code":"LOB24","label":"Security Software"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSA230","label":"IBM Security QRadar SOAR"},"ARM Category":[{"code":"a8m0z0000001h4dAAA","label":"Authentication-\u003ESAML"}],"ARM Case Number":"TS013386067","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Versions"}]

Tips

QRadar SOAR: Enabling SAML is not possible with some top level domains

Troubleshooting

Problem

Symptom

Cause

Resolving The Problem

Document Location

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?