Enabling debug logging for single sign-on authentication

If you want to get extra logging information related to single sign-on (SSO) authentication for Application Security, you can do so by updating the logging configuration.

To obtain extra logging information related to SSO authentication:

1. Open the <fortify.home>/<app_context>/conf/log4j2.xml file in a text editor.

2. For SSO solutions that use HTTP headers, add the following logger definition to the log4j2.xml file:

   
   <Logger name="com.fortify.manager.web.security.auth.FmHttpSsoAuthenticationFilter" level="debug"/>
   

3. For SAML 2.0-compliant single sign-on solutions, locate the section marked <!-- SSO SAML -->, and then change the level of each logger in that section to an appropriate debug value.

See Also

Configuring Application Security to work with single sign-on