Hey, that’s great news! A reboot for a solution is inevitable possibility.
Sent from my iPhone
On Sep 17, 2021, at 6:22 PM, Jonathan Charles wrote:
CAUTION: This email originated from outside of the University of Guelph. Do not
click links or open attachments unless you recognize the
So, it looks like we were sending our auth requests to an F5 which was
sending the requests to two ADFS 2.0 servers... when they hit server 01,
everything was fine... when they hit server 2, they would error out about
30% of the time (hence the infrequency)... we rebooted server 2 and so far
all
Keep us updated on the outcome. This is a good learning experience for all of
us.
Sent from my iPhone
On Sep 17, 2021, at 3:18 PM, Jonathan Charles wrote:
CAUTION: This email originated from outside of the University of Guelph. Do not
click links or open attachments unless you recognize
Thanks, let me try it...
On Fri, Sep 17, 2021 at 10:23 AM Adam Pawlowski wrote:
> Ask whoever runs the IDP to add a skew or offset to the relationship that
> you’re using.
>
>
>
> It is not feasible for the things to be exactly in sync to high precision
> at all times, and this comes up using
Ask whoever runs the IDP to add a skew or offset to the relationship that
you’re using.
It is not feasible for the things to be exactly in sync to high precision at
all times, and this comes up using timing from VMWare, mixed sources etc.
With ADFS the property is NotBeforeSkew, which you can
Is one system observing Daylight Savings Time and the other is not?
> On Sep 17, 2021, at 08:14, Jonathan Charles wrote:
>
>
> Here is another one that failed... but the timestamp is not off...
>
> 2021-09-15 16:06:26,226 DEBUG [http-nio-81-exec-4] fappend.SamlLogger -
>
Here is another one that failed... but the timestamp is not off...
2021-09-15 16:06:26,226 DEBUG [http-nio-81-exec-4] fappend.SamlLogger -
SAML2Utils.checkConditions: NotOnOrAfter Condition = Wed Sep 15 22:06:26
UTC 2021
2021-09-15 16:06:26,226 DEBUG [http-nio-81-exec-4] fappend.SamlLogger -
Just for the sake of sanity, all servers are using the same NTP server(s)? And
if needed, before adjusting NTP, just remember that changing it can alter
license MAC.
From: Jonathan Charles
Sent: Friday, September 17, 2021 9:00 AM
To: Kent Roberts
Cc: Johnson, Tim ; cisco-voip@puck.nether.net
The error message in the Cisco traces (SSO) is:
2021-09-15 16:07:43,791 DEBUG [http-nio-81-exec-22] fappend.SamlLogger -
SAML2Utils.checkConditions: NotOnOrAfter Condition = Wed Sep 15 22:07:44
UTC 2021 *- this time is 17:07:44 CDT*
2021-09-15 16:07:43,791 DEBUG [http-nio-81-exec-22]
