Security

The 'NotBefore' condition could not be verified successfully. The SAML response is not valid

khusain_splunk
Splunk Employee
Splunk Employee

The 'NotBefore' condition could not be verified successfully. The SAML response is not valid
My IDP provider is ADFS.

Tags (2)
0 Karma
1 Solution

khusain_splunk
Splunk Employee
Splunk Employee

Hi,

It seems that splunk is rejecting the assertion from ADFS as it didn't like the "NotBefore" attribute. This may be due to clock skew between Splunk (the SP) and ADFS (the iDP). Please go through below blog link, it may help in troubleshooting:

https://blog.jstubberfield.net/splunk-saml-and-notbefore-verification/
https://answers.splunk.com/answers/350999/using-saml-for-authentication-why-do-we-get-time-s.html

Thanks
Kashif

View solution in original post

0 Karma

khusain_splunk
Splunk Employee
Splunk Employee

Hi,

It seems that splunk is rejecting the assertion from ADFS as it didn't like the "NotBefore" attribute. This may be due to clock skew between Splunk (the SP) and ADFS (the iDP). Please go through below blog link, it may help in troubleshooting:

https://blog.jstubberfield.net/splunk-saml-and-notbefore-verification/
https://answers.splunk.com/answers/350999/using-saml-for-authentication-why-do-we-get-time-s.html

Thanks
Kashif

0 Karma
Get Updates on the Splunk Community!

Monitoring Postgres with OpenTelemetry

Behind every business-critical application, you’ll find databases. These behind-the-scenes stores power ...

Mastering Synthetic Browser Testing: Pro Tips to Keep Your Web App Running Smoothly

To start, if you're new to synthetic monitoring, I recommend exploring this synthetic monitoring overview. In ...

Splunk Edge Processor | Popular Use Cases to Get Started with Edge Processor

Splunk Edge Processor offers more efficient, flexible data transformation – helping you reduce noise, control ...