SAML Tracer Output for SAML | ServiceDesk Plus

How to get SAML tracer output for a SAML based login-attempt?

You can use your favourite SAML tracer browser plugin. Here we used SAML-tracer in a chromium-based browser.

To record the SAML tracer output:

  1. Go to ServiceDesk Plus's login screen
  2. Click on SAML Tracer Extension to open up the SAML Tracer window.
  3. Now click on login with SAML Single Sign-On and login to your IDP.
  4. When it's redirected back to SDP, click on the already opened SAML Tracer window. It should have recorded the SAML requests and responses.


To send us the recording:

  1. Click on export in the SAML Tracer window.
  2. Select "Mask Values" and click on Export
  3. Send us the downloaded JSON file for analysis.



To check the NameID Format and NameID Attribute

  1. Click on the URL that ends with /SamlResponseServlet.
  2. Now open the SAML tab in the bottom bar
  3. Press ctrl+f to open search bar
  4. Type in nameid
  5. In the <NameID Format> tag, we can clearly see the format and it will have the NameID attribute too inside it (admin@zylker.com in the below example) 
<NameID Format="urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress">admin@zylker.com</NameID>

Sample Image:



To check the additional attributes:

  1. Search for "attribute" and the list of attributes can be seen.
  2. The Attribute's Name should be given in SDP 
  3. The AttributeValue can be used to check if the expected value is returned.
        New to M365 Manager Plus?
        New to M365 Manager Plus?
          New to RecoveryManager Plus?
          New to RecoveryManager Plus?
            New to Exchange Reporter Plus?
            New to Exchange Reporter Plus?
              New to SharePoint Manager Plus?
              New to SharePoint Manager Plus?
                  See all integrations
                  New to ADManager Plus?
                  See all integrations
                  New to ADManager Plus?

                    New to ADSelfService Plus?

                    Start your free trial
                    Start your free trial

                      • Related Articles

                      • Login diectly with SAML / Query to enable AD or Local Auth when there is an issue with SAML

                        Issue: When users have AD and/or local authentication enabled along with SAML, the login page is shown when a link from an email is clicked and users need to click "Login with SAML" again. Workaround 1: You can bookmark, <sdp_url>/SamlRequestServlet ...

                      • SAML - Login page would not reflect SAML option

                        Issue: In some cases, even after configuration and enabling of SAML option, it does not appear in the login page. However, if you notice in login page customization, the SAML option appears. Root cause: Check SAML - Service provider details. ...

                      • How to configure SAML with Azure AD

                        This guide will help us configure SAML for users who want to use Azure AD as their IdP and also give you insights on a few issues that you might run into while configuring SAML in an Azure Environment. In an ideal environment, customers will have an ...

                      • SAML FAQ's

                        Please find the list of frequently asked queries in SAML 1. I have enabled SAML but still could not find a way to log in using SAML Since the application has multi-tenant feature there are certain security added to the SAML login. In a SAML ...

                      • Login Page Customization -> SAML Login

                        NOTE: # No need to alter the changes in the application UI # Ensure to take a copy/backup of the below files before altering the same. STEPS TO FOLLOW: 1. Edit the file Login.html under <Drive>:\ManageEngine\ServiceDeskPlus-MSP\Server\Custom\Login ...

                        Related Products