<div dir="auto">Correction, you should try with tomorrow's snapshot, the fixes were comitted this morning.</div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Mon, Jan 17, 2022, 14:10 Frédéric Lohier <<a href="mailto:frederic@lohier.org">frederic@lohier.org</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="auto"><div>Hello,<div dir="auto"><br></div><div dir="auto">SAML integration is broken in Midpoint 4.4. </div><div dir="auto">I opened 3 issues :</div><div dir="auto"><br></div><div dir="auto"><a href="https://jira.evolveum.com/browse/MID-7538" target="_blank" rel="noreferrer">https://jira.evolveum.com/browse/MID-7538</a></div><div dir="auto"><a href="https://jira.evolveum.com/browse/MID-7537" target="_blank" rel="noreferrer">https://jira.evolveum.com/browse/MID-7537</a></div><div dir="auto"><a href="https://jira.evolveum.com/browse/MID-7536" target="_blank" rel="noreferrer">https://jira.evolveum.com/browse/MID-7536</a></div><br>You should try to update Midpoint to 4.4.1-Snapshot (doing it myself too to confirm the fix).</div><div dir="auto"><br></div><div dir="auto">-Frederic<br><br><br><div class="gmail_quote" dir="auto"><div dir="ltr" class="gmail_attr">On Mon, Jan 17, 2022, 13:54 Sanudo Martinez, Santiago via midPoint <<a href="mailto:midpoint@lists.evolveum.com" target="_blank" rel="noreferrer">midpoint@lists.evolveum.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Any ideas regarding what may be causing the error?<br>
<br>
Regards,<br>
<br>
Santiago Sañudo Martínez<br>
Cloud Security Operations <br>
Plaza de Manuel Llano, Santander, Spain, 39011<br>
<br>
<br>
Twitter | LinkedIn | Facebook | YouTube <br>
<br>
This email may contain material that is confidential, and proprietary to Ingram Micro and subsidiaries, for the sole use of the intended recipient. Any review, reliance or distribution by others or forwarding without express permission is strictly prohibited. If you are not the intended recipient, please contact the sender and delete all copies.<br>
<br>
-----Original Message-----<br>
From: midPoint <<a href="mailto:midpoint-bounces@lists.evolveum.com" rel="noreferrer noreferrer" target="_blank">midpoint-bounces@lists.evolveum.com</a>> On Behalf Of <a href="mailto:midpoint-request@lists.evolveum.com" rel="noreferrer noreferrer" target="_blank">midpoint-request@lists.evolveum.com</a><br>
Sent: Friday, January 14, 2022 10:04 AM<br>
To: <a href="mailto:midpoint@lists.evolveum.com" rel="noreferrer noreferrer" target="_blank">midpoint@lists.evolveum.com</a><br>
Subject: [EXTERNAL]midPoint Digest, Vol 117, Issue 12<br>
<br>
Send midPoint mailing list submissions to<br>
<a href="mailto:midpoint@lists.evolveum.com" rel="noreferrer noreferrer" target="_blank">midpoint@lists.evolveum.com</a><br>
<br>
To subscribe or unsubscribe via the World Wide Web, visit<br>
<a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.evolveum.com_mailman_listinfo_midpoint&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=07NFlgncQdYgR6uj-6raZ325AxynlQkraK7z9Nzd5BQ&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.evolveum.com_mailman_listinfo_midpoint&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=07NFlgncQdYgR6uj-6raZ325AxynlQkraK7z9Nzd5BQ&e=</a><br>
or, via email, send a message with subject or body 'help' to<br>
<a href="mailto:midpoint-request@lists.evolveum.com" rel="noreferrer noreferrer" target="_blank">midpoint-request@lists.evolveum.com</a><br>
<br>
You can reach the person managing the list at<br>
<a href="mailto:midpoint-owner@lists.evolveum.com" rel="noreferrer noreferrer" target="_blank">midpoint-owner@lists.evolveum.com</a><br>
<br>
When replying, please edit your Subject line so it is more specific than "Re: Contents of midPoint digest..."<br>
<br>
<br>
Today's Topics:<br>
<br>
1. Native Repository Webinar and December Webinar Recording<br>
(Evolveum Marketing)<br>
2. Midpoint SSO SAML2 failing after migrating to 4.4 version<br>
(Sanudo Martinez, Santiago)<br>
<br>
<br>
----------------------------------------------------------------------<br>
<br>
Message: 1<br>
Date: Thu, 13 Jan 2022 16:48:14 +0100<br>
From: Evolveum Marketing <<a href="mailto:vera@evolveum.com" rel="noreferrer noreferrer" target="_blank">vera@evolveum.com</a>><br>
To: midPoint General Discussion <<a href="mailto:midpoint@lists.evolveum.com" rel="noreferrer noreferrer" target="_blank">midpoint@lists.evolveum.com</a>><br>
Subject: [midPoint] Native Repository Webinar and December Webinar<br>
Recording<br>
Message-ID: <<a href="mailto:d5891f00-c09c-0981-7852-09126d7b1e4c@evolveum.com" rel="noreferrer noreferrer" target="_blank">d5891f00-c09c-0981-7852-09126d7b1e4c@evolveum.com</a>><br>
Content-Type: text/plain; charset="utf-8"; Format="flowed"<br>
<br>
Dear midPoint community,<br>
<br>
We hope you had nice holidays. Start the new year with our series of online webinars that follow Katarina Bolemant’s presentation of what’s new in midPoint 4.4, midScale results and other interesting topics (the recording is available here: <a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__youtu.be_KpgurGKTyzg&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=LrooLX4SVpygoTyyNBaLrD4onImsBU7BnBg74wUfdx0&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=https-3A__youtu.be_KpgurGKTyzg&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=LrooLX4SVpygoTyyNBaLrD4onImsBU7BnBg74wUfdx0&e=</a> ).<br>
<br>
The closest webinar is dedicated to Native PostgreSQL repository and is led by Richard Richter, our Java Developer. The webinar will cover what midPoint repository is and why we decided to reimplement it once more. <br>
Richard will talk about major changes inside as well as outside of the repository, how to switch to it and how to use it. The SQL audit will not be forgotten either including its new table partitioning.<br>
<br>
*Please reserve the date:*<br>
<br>
January 20 (Thursday), 4PM CET (10AM EST)<br>
<br>
*Zoom link: <br>
*<a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__us02web.zoom.us_j_85268854299-3Fpwd-3DOEdZVmMrdzVDZzk5WlAzNjMzMExWUT09&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=05vMgOGnP4mQSzKg9IuwIMo3ucH1_J0Bsh0Bs9iHrDo&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=https-3A__us02web.zoom.us_j_85268854299-3Fpwd-3DOEdZVmMrdzVDZzk5WlAzNjMzMExWUT09&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=05vMgOGnP4mQSzKg9IuwIMo3ucH1_J0Bsh0Bs9iHrDo&e=</a> <br>
<br>
*Meeting ID: *852 6885 4299*<br>
Password: *302604<br>
<br>
See you there!<br>
<br>
-- <br>
<br>
Veronika Kolpascikova<br>
Marketing Specialist<br>
<a href="http://evolveum.com" rel="noreferrer noreferrer noreferrer" target="_blank">evolveum.com</a><br>
<br>
-------------- next part --------------<br>
An HTML attachment was scrubbed...<br>
URL: <<a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.evolveum.com_pipermail_midpoint_attachments_20220113_3ed29ea8_attachment-2D0001.htm&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=IUU4KbMJ2FNDGXpnekEwPBrpeJFce2NrShtPbEPhbQQ&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.evolveum.com_pipermail_midpoint_attachments_20220113_3ed29ea8_attachment-2D0001.htm&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=IUU4KbMJ2FNDGXpnekEwPBrpeJFce2NrShtPbEPhbQQ&e=</a> ><br>
<br>
------------------------------<br>
<br>
Message: 2<br>
Date: Fri, 14 Jan 2022 09:02:10 +0000<br>
From: "Sanudo Martinez, Santiago"<br>
<<a href="mailto:Santiago.SanudoMartinez@ingrammicro.com" rel="noreferrer noreferrer" target="_blank">Santiago.SanudoMartinez@ingrammicro.com</a>><br>
To: midPoint General Discussion <<a href="mailto:midpoint@lists.evolveum.com" rel="noreferrer noreferrer" target="_blank">midpoint@lists.evolveum.com</a>><br>
Subject: [midPoint] Midpoint SSO SAML2 failing after migrating to 4.4<br>
version<br>
Message-ID:<br>
<<a href="mailto:PH0PR10MB56829CA0DC065D9F8670A140E7549@PH0PR10MB5682.namprd10.prod.outlook.com" rel="noreferrer noreferrer" target="_blank">PH0PR10MB56829CA0DC065D9F8670A140E7549@PH0PR10MB5682.namprd10.prod.outlook.com</a>><br>
<br>
Content-Type: text/plain; charset="iso-8859-1"<br>
<br>
Hi,<br>
<br>
I've migrated from version 4.2 to 4.4. When I was running 4.2 I had SSO with SAML properly configure as following:<br>
<br>
<securityPolicy xmlns="<a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_common-2D3&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=MWsoc1JBC4fw0tZQDPFKiuO8DobVqoItQHNTY8RTXjo&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_common-2D3&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=MWsoc1JBC4fw0tZQDPFKiuO8DobVqoItQHNTY8RTXjo&e=</a> " xmlns:c="<a href="http://midpoint.evolveum.com/xml/ns/public/common/common-3" rel="noreferrer noreferrer noreferrer" target="_blank">http://midpoint.evolveum.com/xml/ns/public/common/common-3</a>" xmlns:icfs="<a href="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3" rel="noreferrer noreferrer noreferrer" target="_blank">http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3</a>" xmlns:org="<a href="http://midpoint.evolveum.com/xml/ns/public/common/org-3" rel="noreferrer noreferrer noreferrer" target="_blank">http://midpoint.evolveum.com/xml/ns/public/common/org-3</a>" xmlns:q="<a href="http://prism.evolveum.com/xml/ns/public/query-3" rel="noreferrer noreferrer noreferrer" target="_blank">http://prism.evolveum.com/xml/ns/public/query-3</a>" xmlns:ri="<a href="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3" rel="noreferrer noreferrer noreferrer" target="_blank">http://midpoint.evolveum.com/xml/ns/public/resource/instance-3</a>" xmlns:t="<a href="http://prism.evolveum.com/xml/ns/public/types-3" rel="noreferrer noreferrer noreferrer" target="_blank">http://prism.evolveum.com/xml/ns/public/types-3</a>" oid="00000000-0000-0000-0000-000000000120" version="18"><br>
<name>Default Security Policy</name><br>
<authentication><br>
<modules><br>
<loginForm ><br>
<name>internalLoginForm</name><br>
<description>Internal username/password authentication, default user password, login form</description><br>
</loginForm><br>
<httpBasic ><br>
<name>internalBasic</name><br>
<description>Internal username/password authentication, using HTTP basic auth</description><br>
</httpBasic><br>
<br>
<saml2 ><br>
<name>azureSsoSaml</name><br>
<description>My internal enterprise SAML-based SSO system.</description><br>
<network><br>
<readTimeout>10000</readTimeout><br>
<connectTimeout>5000</connectTimeout><br>
</network><br>
<br>
<serviceProvider><br>
<entityId>sp_midpoint</entityId><br>
<signRequests>true</signRequests><br>
<wantAssertionsSigned>true</wantAssertionsSigned><br>
<singleLogoutEnabled>true</singleLogoutEnabled><br>
<nameId>TRANSIENT</nameId><br>
<provider><br>
<entityId><a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__sts.windows.net_484fa682-2D02f6-2D4ffa-2D8cea-2Df72692457936_&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=JuvEH63EBxTdw77jm6cp4tpmey7KRu90UsW01NrPCU8&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=https-3A__sts.windows.net_484fa682-2D02f6-2D4ffa-2D8cea-2Df72692457936_&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=JuvEH63EBxTdw77jm6cp4tpmey7KRu90UsW01NrPCU8&e=</a> </entityId><br>
<linkText>ssoazure</linkText><br>
<alias>ssoazure</alias><br>
<metadata><br>
<metadataUrl><a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__login.microsoftonline.com_484fa682-2D02f6-2D4ffa-2D8cea-2Df72692457936_federationmetadata_2007-2D06_federationmetadata.xml-3Fappid-3Dc1bacfd5-2D5041-2D4b02-2Daac3-2Dfa76e0a3560e&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=oDoIOesF3a8lG0lxyLdA39mk3TzhJ3LUGN4Ra6T_ejA&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=https-3A__login.microsoftonline.com_484fa682-2D02f6-2D4ffa-2D8cea-2Df72692457936_federationmetadata_2007-2D06_federationmetadata.xml-3Fappid-3Dc1bacfd5-2D5041-2D4b02-2Daac3-2Dfa76e0a3560e&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=oDoIOesF3a8lG0lxyLdA39mk3TzhJ3LUGN4Ra6T_ejA&e=</a> </metadataUrl><br>
</metadata><br>
<skipSslValidation>true</skipSslValidation><br>
<authenticationRequestBinding>urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST</authenticationRequestBinding><br>
<nameOfUsernameAttribute>employeeid</nameOfUsernameAttribute><br>
</provider><br>
</serviceProvider><br>
</saml2><br>
</modules><br>
<sequence id="8"><br>
<name>admin-gui-default</name><br>
<description><br>
Default GUI authentication sequence.<br>
We want to try company SSO, federation and internal. In that order.<br>
Just one of then need to be successful to let user in.<br>
</description><br>
<channel><br>
<channelId><a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23user&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=lPFoLqcmAFMpYbA-ovXO5w_Gep9jFC_Y80GFG0pT1Wc&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23user&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=lPFoLqcmAFMpYbA-ovXO5w_Gep9jFC_Y80GFG0pT1Wc&e=</a> </channelId><br>
<default>true</default><br>
<urlSuffix>default</urlSuffix><br>
</channel><br>
<module><br>
<name>azureSsoSaml</name><br>
<order>30</order><br>
<necessity>sufficient</necessity><br>
</module><br>
<br>
<br>
</sequence><br>
<sequence id="9"><br>
<name>admin-gui-emergency</name><br>
<description><br>
Special GUI authentication sequence that is using just the internal user password.<br>
It is used only in emergency. It allows to skip SAML authentication cycles, e.g. in case<br>
that the SAML authentication is redirecting the browser incorrectly.<br>
</description><br>
<channel><br>
<channelId><a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23user&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=lPFoLqcmAFMpYbA-ovXO5w_Gep9jFC_Y80GFG0pT1Wc&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23user&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=lPFoLqcmAFMpYbA-ovXO5w_Gep9jFC_Y80GFG0pT1Wc&e=</a> </channelId><br>
<default>false</default><br>
<urlSuffix>emergency</urlSuffix><br>
</channel><br>
<requireAssignmentTarget oid="00000000-0000-0000-0000-000000000004" relation="org:default" type="c:RoleType"/><br>
<module id="14"><br>
<name>internalLoginForm</name><br>
<order>30</order><br>
<necessity>sufficient</necessity><br>
</module><br>
</sequence><br>
<sequence id="16"><br>
<name>rest</name><br>
<description><br>
Authentication sequence for REST service.<br>
</description><br>
<channel><br>
<channelId><a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23rest&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=5sE74Tw77T4ksUfi_jdo-Fp0St9fjTkWxvxfCWe9n3s&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23rest&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=5sE74Tw77T4ksUfi_jdo-Fp0St9fjTkWxvxfCWe9n3s&e=</a> </channelId><br>
<default>true</default><br>
<urlSuffix>rest-default</urlSuffix><br>
</channel><br>
<module id="18"><br>
<name>internalBasic</name><br>
<order>10</order><br>
<necessity>sufficient</necessity><br>
</module><br>
</sequence><br>
<sequence id="17"><br>
<name>actuator</name><br>
<description><br>
Authentication sequence for actuator.<br>
</description><br>
<channel><br>
<channelId><a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23actuator&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=Hg4qx2bcnP0X5rjaDOk66v7c50YeHcDOBK3LmfB5U9U&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23actuator&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=Hg4qx2bcnP0X5rjaDOk66v7c50YeHcDOBK3LmfB5U9U&e=</a> </channelId><br>
<default>true</default><br>
<urlSuffix>actuator-default</urlSuffix><br>
</channel><br>
<module id="19"><br>
<name>internalBasic</name><br>
<order>10</order><br>
<necessity>sufficient</necessity><br>
</module><br>
</sequence><br>
<ignoredLocalPath>/actuator</ignoredLocalPath><br>
<ignoredLocalPath>/actuator/health</ignoredLocalPath><br>
</authentication><br>
<credentials><br>
<password><br>
<minOccurs>0</minOccurs><br>
<lockoutMaxFailedAttempts>3</lockoutMaxFailedAttempts><br>
<lockoutFailedAttemptsDuration>PT3M</lockoutFailedAttemptsDuration><br>
<lockoutDuration>PT15M</lockoutDuration><br>
<valuePolicyRef xmlns:tns="<a href="http://midpoint.evolveum.com/xml/ns/public/common/common-3" rel="noreferrer noreferrer noreferrer" target="_blank">http://midpoint.evolveum.com/xml/ns/public/common/common-3</a>" oid="00000000-0000-0000-0000-000000000003" relation="org:default" type="tns:ValuePolicyType"/><br>
</password><br>
</credentials><br>
</securityPolicy><br>
<br>
<br>
The main issue is that after upgrading to 4.4 it started to failed. I've seen that it keeps failing even with the proper changes mentioned at the documentation of the 4.4 version (<a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__docs.evolveum.com_midpoint_reference_security_authentication_flexible-2Dauthentication_configuration_-23complete-2Dconfiguration-2Dexamples&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=bVtpo5rOi0yHgmpqdZfu5tdo7P_rr8lJWUfozoM147A&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=https-3A__docs.evolveum.com_midpoint_reference_security_authentication_flexible-2Dauthentication_configuration_-23complete-2Dconfiguration-2Dexamples&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=bVtpo5rOi0yHgmpqdZfu5tdo7P_rr8lJWUfozoM147A&e=</a> ) and the previous ones (<a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__docs.evolveum.com_midpoint_reference_security_authentication_flexible-2Dauthentication_configuration-2Dbefore-2D4-2D4_&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=dRF6gUWdB_uEDwGcvM88xXc3YOZm526EQ-GuPFb6q-M&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=https-3A__docs.evolveum.com_midpoint_reference_security_authentication_flexible-2Dauthentication_configuration-2Dbefore-2D4-2D4_&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=dRF6gUWdB_uEDwGcvM88xXc3YOZm526EQ-GuPFb6q-M&e=</a> ) which end up making the following configuration:<br>
<br>
<securityPolicy xmlns=<a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_common-2D3&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=MWsoc1JBC4fw0tZQDPFKiuO8DobVqoItQHNTY8RTXjo&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_common-2D3&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=MWsoc1JBC4fw0tZQDPFKiuO8DobVqoItQHNTY8RTXjo&e=</a> xmlns:c=<a href="http://midpoint.evolveum.com/xml/ns/public/common/common-3" rel="noreferrer noreferrer noreferrer" target="_blank">http://midpoint.evolveum.com/xml/ns/public/common/common-3</a> xmlns:icfs=<a href="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3" rel="noreferrer noreferrer noreferrer" target="_blank">http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3</a> xmlns:org=<a href="http://midpoint.evolveum.com/xml/ns/public/common/org-3" rel="noreferrer noreferrer noreferrer" target="_blank">http://midpoint.evolveum.com/xml/ns/public/common/org-3</a> xmlns:q=<a href="http://prism.evolveum.com/xml/ns/public/query-3" rel="noreferrer noreferrer noreferrer" target="_blank">http://prism.evolveum.com/xml/ns/public/query-3</a> xmlns:ri=<a href="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3" rel="noreferrer noreferrer noreferrer" target="_blank">http://midpoint.evolveum.com/xml/ns/public/resource/instance-3</a> xmlns:t=<a href="http://prism.evolveum.com/xml/ns/public/types-3" rel="noreferrer noreferrer noreferrer" target="_blank">http://prism.evolveum.com/xml/ns/public/types-3</a> oid="00000000-0000-0000-0000-000000000120" version="18"><br>
<name>Default Security Policy</name><br>
<metadata><br>
<requestTimestamp>2020-12-01T12:00:15.108Z</requestTimestamp><br>
<createTimestamp>2020-12-01T12:00:15.137Z</createTimestamp><br>
<createChannel><a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23init&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=V-iOvPx_eVd3ly8tQszHDoXyni3VK9kadBTjnTlcfkw&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23init&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=V-iOvPx_eVd3ly8tQszHDoXyni3VK9kadBTjnTlcfkw&e=</a> </createChannel><br>
</metadata><br>
<operationExecution id="1"><br>
<timestamp>2020-12-01T12:00:15.179Z</timestamp><br>
<operation><br>
<objectDelta><br>
<t:changeType>add</t:changeType><br>
<t:objectType>c:SecurityPolicyType</t:objectType><br>
</objectDelta><br>
<executionResult><br>
<operation>com.evolveum.midpoint.model.impl.lens.ChangeExecutor.executeDelta</operation><br>
<status>success</status><br>
<importance>normal</importance><br>
<token>1000000000000000015</token><br>
</executionResult><br>
<objectName>Default Security Policy</objectName><br>
</operation><br>
<status>success</status><br>
<channel><a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23init&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=V-iOvPx_eVd3ly8tQszHDoXyni3VK9kadBTjnTlcfkw&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23init&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=V-iOvPx_eVd3ly8tQszHDoXyni3VK9kadBTjnTlcfkw&e=</a> </channel><br>
</operationExecution><br>
<iteration>0</iteration><br>
<iterationToken/><br>
<authentication><br>
<modules><br>
<loginForm ><br>
<name>internalLoginForm</name><br>
<description>Internal username/password authentication, default user password, login form</description><br>
</loginForm><br>
<httpBasic ><br>
<name>internalBasic</name><br>
<description>Internal username/password authentication, using HTTP basic auth</description><br>
</httpBasic><br>
<br>
<saml2><br>
<name>azureSsoSaml</name><br>
<description>My internal enterprise SAML-based SSO system.</description><br>
<network><br>
<readTimeout>10000</readTimeout><br>
<connectTimeout>5000</connectTimeout><br>
</network><br>
<br>
<serviceProvider><br>
<entityId>sp_midpoint</entityId><br>
<signRequests>false</signRequests><br>
<identityProvider><br>
<entityId><a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__sts.windows.net_b44641f9-2De36e-2D4d7f-2Da3c4-2Deb3b991b6120_&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=LGnTR7IvPsXLC6ehcJRKfVcnbFHnpSWo14WJ4Foa954&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=https-3A__sts.windows.net_b44641f9-2De36e-2D4d7f-2Da3c4-2Deb3b991b6120_&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=LGnTR7IvPsXLC6ehcJRKfVcnbFHnpSWo14WJ4Foa954&e=</a> </entityId<<a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__sts.windows.net_b44641f9-2De36e-2D4d7f-2Da3c4-2Deb3b991b6120_-253c_entityId&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=9RAThS5sjNWke9-zD6-xfROeZDXvi3kevQGxM8cvDno&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=https-3A__sts.windows.net_b44641f9-2De36e-2D4d7f-2Da3c4-2Deb3b991b6120_-253c_entityId&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=9RAThS5sjNWke9-zD6-xfROeZDXvi3kevQGxM8cvDno&e=</a> >><br>
<linkText>ssoazure</linkText><br>
<metadata><br>
<metadataUrl><a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__login.microsoftonline.com_b44641f9-2De36e-2D4d7f-2Da3c4-2Deb3b991b6120_federationmetadata_2007-2D06_federationmetadata.xml-3Fappid-3De684382b-2D6768-2D430b-2D842a-2D76ba91d49c74&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=knC-NHcfOeDbREC1ggIvr_rHeczD_YodwFj_VbY1hJM&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=https-3A__login.microsoftonline.com_b44641f9-2De36e-2D4d7f-2Da3c4-2Deb3b991b6120_federationmetadata_2007-2D06_federationmetadata.xml-3Fappid-3De684382b-2D6768-2D430b-2D842a-2D76ba91d49c74&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=knC-NHcfOeDbREC1ggIvr_rHeczD_YodwFj_VbY1hJM&e=</a> </metadataUrl<<a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__login.microsoftonline.com_b44641f9-2De36e-2D4d7f-2Da3c4-2Deb3b991b6120_federationmetadata_2007-2D06_federationmetadata.xml-3Fappid-3De684382b-2D6768-2D430b-2D842a-2D76ba91d49c74-253c_metadataUrl&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=vHVNRYwEzUc6WVvRWfz9cZ500A77Zca2KnRaZv-txHQ&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=https-3A__login.microsoftonline.com_b44641f9-2De36e-2D4d7f-2Da3c4-2Deb3b991b6120_federationmetadata_2007-2D06_federationmetadata.xml-3Fappid-3De684382b-2D6768-2D430b-2D842a-2D76ba91d49c74-253c_metadataUrl&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=vHVNRYwEzUc6WVvRWfz9cZ500A77Zca2KnRaZv-txHQ&e=</a> >><br>
</metadata><br>
<authenticationRequestBinding>urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST</authenticationRequestBinding><br>
<nameOfUsernameAttribute>employeeid</nameOfUsernameAttribute><br>
</identityProvider><br>
</serviceProvider><br>
</saml2><br>
</modules><br>
<sequence id="8"><br>
<name>admin-gui-default</name><br>
<description><br>
Default GUI authentication sequence.<br>
We want to try company SSO, federation and internal. In that order.<br>
Just one of then need to be successful to let user in.<br>
</description><br>
<channel><br>
<channelId><a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23user&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=lPFoLqcmAFMpYbA-ovXO5w_Gep9jFC_Y80GFG0pT1Wc&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23user&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=lPFoLqcmAFMpYbA-ovXO5w_Gep9jFC_Y80GFG0pT1Wc&e=</a> </channelId><br>
<default>true</default><br>
<urlSuffix>default</urlSuffix><br>
</channel><br>
<module><br>
<name>azureSsoSaml</name><br>
<order>30</order><br>
<necessity>sufficient</necessity><br>
</module><br>
<br>
<br>
</sequence><br>
<sequence id="9"><br>
<name>admin-gui-emergency</name><br>
<description><br>
Special GUI authentication sequence that is using just the internal user password.<br>
It is used only in emergency. It allows to skip SAML authentication cycles, e.g. in case<br>
that the SAML authentication is redirecting the browser incorrectly.<br>
</description><br>
<channel><br>
<channelId><a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23user&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=lPFoLqcmAFMpYbA-ovXO5w_Gep9jFC_Y80GFG0pT1Wc&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23user&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=lPFoLqcmAFMpYbA-ovXO5w_Gep9jFC_Y80GFG0pT1Wc&e=</a> </channelId><br>
<default>false</default><br>
<urlSuffix>emergency</urlSuffix><br>
</channel><br>
<requireAssignmentTarget oid="00000000-0000-0000-0000-000000000004" relation="org:default" type="c:RoleType"/><br>
<module id="14"><br>
<name>internalLoginForm</name><br>
<order>30</order><br>
<necessity>sufficient</necessity><br>
</module><br>
</sequence><br>
<sequence id="16"><br>
<name>rest</name><br>
<description><br>
Authentication sequence for REST service.<br>
</description><br>
<channel><br>
<channelId><a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23rest&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=5sE74Tw77T4ksUfi_jdo-Fp0St9fjTkWxvxfCWe9n3s&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23rest&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=5sE74Tw77T4ksUfi_jdo-Fp0St9fjTkWxvxfCWe9n3s&e=</a> </channelId><br>
<default>true</default><br>
<urlSuffix>rest-default</urlSuffix><br>
</channel><br>
<module id="18"><br>
<name>internalBasic</name><br>
<order>10</order><br>
<necessity>sufficient</necessity><br>
</module><br>
</sequence><br>
<sequence id="17"><br>
<name>actuator</name><br>
<description><br>
Authentication sequence for actuator.<br>
</description><br>
<channel><br>
<channelId><a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23actuator&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=Hg4qx2bcnP0X5rjaDOk66v7c50YeHcDOBK3LmfB5U9U&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=http-3A__midpoint.evolveum.com_xml_ns_public_common_channels-2D3-23actuator&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=Hg4qx2bcnP0X5rjaDOk66v7c50YeHcDOBK3LmfB5U9U&e=</a> </channelId><br>
<default>true</default><br>
<urlSuffix>actuator-default</urlSuffix><br>
</channel><br>
<module id="19"><br>
<name>internalBasic</name><br>
<order>10</order><br>
<necessity>sufficient</necessity><br>
</module><br>
</sequence><br>
<ignoredLocalPath>/actuator</ignoredLocalPath><br>
<ignoredLocalPath>/actuator/health</ignoredLocalPath><br>
</authentication><br>
<credentials><br>
<password><br>
<minOccurs>0</minOccurs><br>
<lockoutMaxFailedAttempts>3</lockoutMaxFailedAttempts><br>
<lockoutFailedAttemptsDuration>PT3M</lockoutFailedAttemptsDuration><br>
<lockoutDuration>PT15M</lockoutDuration><br>
<valuePolicyRef xmlns:tns=<a href="http://midpoint.evolveum.com/xml/ns/public/common/common-3" rel="noreferrer noreferrer noreferrer" target="_blank">http://midpoint.evolveum.com/xml/ns/public/common/common-3</a> oid="00000000-0000-0000-0000-000000000003" relation="org:default" type="tns:ValuePolicyType"/><br>
</password><br>
</credentials><br>
</securityPolicy><br>
<br>
Pretty much, only the saml2 module has changed and the <provider> tag is also changed to the new one at 4.4 version, <identityProvider>. The problem is that is doesn't even redirect me to the Azure SSO login webpage and crashes:<br>
<br>
[cid:image002.png@01D8092D.82BD1E00]<br>
<br>
Attaching as well the midpoin.log where you can see that it fails to load the module filters. [cid:image003.png@01D8092D.C8AFC390]<br>
<br>
Regards,<br>
<br>
Santiago Sañudo Martínez<br>
Cloud Security Operations<br>
Plaza de Manuel Llano, Santander, Spain, 39011<br>
<br>
[cid:image001.jpg@01D8092D.1F088520]<br>
Twitter<<a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__bit.ly_IngramTwitter&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=Bmk7vELnxVjduUxcfggYEXng7BjWWvJwvcxu8xzwcPg&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=http-3A__bit.ly_IngramTwitter&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=Bmk7vELnxVjduUxcfggYEXng7BjWWvJwvcxu8xzwcPg&e=</a> > | LinkedIn<<a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__bit.ly_IngramLinkedIN&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=SCHEjInPAx9IfggQ-BkV4VNUFKCJuQSqikQHqdxGkus&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=http-3A__bit.ly_IngramLinkedIN&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=SCHEjInPAx9IfggQ-BkV4VNUFKCJuQSqikQHqdxGkus&e=</a> > | Facebook<<a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__bit.ly_IngramFacebook&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=lAKRl9KEK-JdS6tOF3wJmN5Ph-Hbj0wiaUeY-KekC1g&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=http-3A__bit.ly_IngramFacebook&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=lAKRl9KEK-JdS6tOF3wJmN5Ph-Hbj0wiaUeY-KekC1g&e=</a> > | YouTube<<a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__bit.ly_IngramYouTube&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=vQAP439IVPAidAf4r3CiLeYyaXhckyjdaGo1SUGj0tQ&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=http-3A__bit.ly_IngramYouTube&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=vQAP439IVPAidAf4r3CiLeYyaXhckyjdaGo1SUGj0tQ&e=</a> ><br>
<br>
This email may contain material that is confidential, and proprietary to Ingram Micro and subsidiaries, for the sole use of the intended recipient. Any review, reliance or distribution by others or forwarding without express permission is strictly prohibited. If you are not the intended recipient, please contact the sender and delete all copies.<br>
<br>
<br>
La información contenida en este mensaje es confidencial. En caso de que reciba este mensaje por error le rogamos lo comunique a la mayor brevedad al emisor y proceda a su eliminación definitiva, absteniéndose de copiar, almacenar o difundir su contenido. De acuerdo con lo establecido en la Ley Orgánica 15/1999, de Protección de Datos de Carácter Personal y en el Reglamento de Desarrollo 1720/2007, los datos personales que facilite a través de la dirección de correo indicada serán incorporados a un fichero titularidad de INGRAM MICRO, S.L.U., con domicilio en C/ Antonio Machado, 78-80 1ª y 2ª pl. Business Park ( 08840-Viladecans). Mediante el envío de sus datos, Ud. otorga su consentimiento expreso a INGRAM MICRO, S.L.U, para el tratamiento de sus datos, con la finalidad de atender a su consulta y/o mantener la relación profesional, comercial, y/o contractual que en su caso establezca con INGRAM MICRO, S.L.U. Puede ejercitar sus derechos de acceso, rectificación, cancelación y oposición notificándolo por escrito a la dirección del remitente, o a la siguiente dirección de correo <a href="mailto:nuevascuentas@ingrammicro.es" rel="noreferrer noreferrer" target="_blank">nuevascuentas@ingrammicro.es</a>. De acuerdo con la Ley 34/2002, de Servicios de la Sociedad de la Información y de Comercio Electrónico, Vd. podrá oponerse en cualquier momento al tratamiento de sus datos con fines promocionales notificándonoslo por escrito a la dirección de correo mencionada.<br>
.................................................................................................................................................................................................................................................<br>
The information contained in this message is confidential. If you receive this message by error please notify it as soon as possible to the sender and proceed to their final elimination by not copy, store or distribute its content. In accordance of what is stated in the Law 15/1999, of Data Personal Protection and Regulation Rule 1720/2007, the personal data provided through the email address you entered will be included in a file owned by INGRAM MICRO, SLU, located at C/ Antonio Machado, 78-80 1ª y 2ª pl. Business Park ( 08840-Viladecans). By submitting your data, you expressly give your consent to INGRAM MICRO, SLU, to the treatment of your data, in order to answer to your questions and / or keep the professional, commercial relationship and / or contractual set with INGRAM MICRO, SLU You can exercise your rights of access, rectification, cancellation and opposition by giving written notification to the sender address or to the following email: <a href="mailto:nuevascuentas@ingrammicro.es" rel="noreferrer noreferrer" target="_blank">nuevascuentas@ingrammicro.es</a>. According to Law 34/2002, of the Information Society and Electronic Commerce, you may object at any time to your data treatment for promotional purposes by notifying us in writing to the email address above.<br>
[Ingram_2818e5de]<br>
-------------- next part --------------<br>
An HTML attachment was scrubbed...<br>
URL: <<a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.evolveum.com_pipermail_midpoint_attachments_20220114_21c9c4ab_attachment.htm&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=ZuQv2nj4f0IjvRMomJlliX34UvLNfqyanE7vPkjz_4Y&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.evolveum.com_pipermail_midpoint_attachments_20220114_21c9c4ab_attachment.htm&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=ZuQv2nj4f0IjvRMomJlliX34UvLNfqyanE7vPkjz_4Y&e=</a> ><br>
-------------- next part --------------<br>
A non-text attachment was scrubbed...<br>
Name: image001.jpg<br>
Type: image/jpeg<br>
Size: 2057 bytes<br>
Desc: image001.jpg<br>
URL: <<a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.evolveum.com_pipermail_midpoint_attachments_20220114_21c9c4ab_attachment.jpg&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=ZlPVwWeH5wofQJm_n7mXYOw47DxYkY3y2fr_7ET9vi8&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.evolveum.com_pipermail_midpoint_attachments_20220114_21c9c4ab_attachment.jpg&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=ZlPVwWeH5wofQJm_n7mXYOw47DxYkY3y2fr_7ET9vi8&e=</a> ><br>
-------------- next part --------------<br>
A non-text attachment was scrubbed...<br>
Name: image002.png<br>
Type: image/png<br>
Size: 31753 bytes<br>
Desc: image002.png<br>
URL: <<a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.evolveum.com_pipermail_midpoint_attachments_20220114_21c9c4ab_attachment.png&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=rGqAIc8fJ0dYU9ieIUdY2eP3iTiHLakduKJBKO_SXu8&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.evolveum.com_pipermail_midpoint_attachments_20220114_21c9c4ab_attachment.png&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=rGqAIc8fJ0dYU9ieIUdY2eP3iTiHLakduKJBKO_SXu8&e=</a> ><br>
-------------- next part --------------<br>
A non-text attachment was scrubbed...<br>
Name: image003.png<br>
Type: image/png<br>
Size: 164887 bytes<br>
Desc: image003.png<br>
URL: <<a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.evolveum.com_pipermail_midpoint_attachments_20220114_21c9c4ab_attachment-2D0001.png&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=OewBdHkEXmGAhlet2zVUyU54TJPS9tSAPG2dMdQxxXU&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.evolveum.com_pipermail_midpoint_attachments_20220114_21c9c4ab_attachment-2D0001.png&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=OewBdHkEXmGAhlet2zVUyU54TJPS9tSAPG2dMdQxxXU&e=</a> ><br>
-------------- next part --------------<br>
A non-text attachment was scrubbed...<br>
Name: midpoint.log<br>
Type: application/octet-stream<br>
Size: 46319 bytes<br>
Desc: midpoint.log<br>
URL: <<a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.evolveum.com_pipermail_midpoint_attachments_20220114_21c9c4ab_attachment.obj&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=75iymYiMsTfhvRWRQpkcxmnINJVdgOSXNRfLYROkJus&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.evolveum.com_pipermail_midpoint_attachments_20220114_21c9c4ab_attachment.obj&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=75iymYiMsTfhvRWRQpkcxmnINJVdgOSXNRfLYROkJus&e=</a> ><br>
<br>
------------------------------<br>
<br>
Subject: Digest Footer<br>
<br>
_______________________________________________<br>
midPoint mailing list<br>
<a href="mailto:midPoint@lists.evolveum.com" rel="noreferrer noreferrer" target="_blank">midPoint@lists.evolveum.com</a><br>
<a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.evolveum.com_mailman_listinfo_midpoint&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=07NFlgncQdYgR6uj-6raZ325AxynlQkraK7z9Nzd5BQ&e=" rel="noreferrer noreferrer noreferrer" target="_blank">https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.evolveum.com_mailman_listinfo_midpoint&d=DwIGaQ&c=--1RjWWBW4Kf6aBAaj53vPItwfT0BR1YjSDV46P5EvE&r=02nQn_XF01OYsg7KWPE9n6CNvfs_QyztKbAlcXkYqvqpvrlKyhGRLNIt3vGj5sdE&m=a2cp3xU7TwqafuyZw8tLIBKzHbfiOxWybh4GfN0KT19Eege6xn7_le96BZO3hxAP&s=07NFlgncQdYgR6uj-6raZ325AxynlQkraK7z9Nzd5BQ&e=</a> <br>
<br>
<br>
------------------------------<br>
<br>
End of midPoint Digest, Vol 117, Issue 12<br>
*****************************************<br>
_______________________________________________<br>
midPoint mailing list<br>
<a href="mailto:midPoint@lists.evolveum.com" rel="noreferrer noreferrer" target="_blank">midPoint@lists.evolveum.com</a><br>
<a href="https://lists.evolveum.com/mailman/listinfo/midpoint" rel="noreferrer noreferrer noreferrer" target="_blank">https://lists.evolveum.com/mailman/listinfo/midpoint</a><br>
</blockquote></div></div></div>
</blockquote></div>