HOW TO

Use a SAML Tracer browser extension in Microsoft Edge to gather troubleshooting data for SAML Single Sign On failures

Last Published: February 13, 2025

Summary

When SAML Single Sign On is enabled for ArcGIS Enterprise or ArcGIS Online, a SAML Tracer browser extension can be useful for gathering troubleshooting data.

An example of a SAML tracer extension for Microsoft Edge includes SAML, WS-Federation and OAuth 2.0 tracer, and it can be found here - SAML, WS-Federation and OAuth 2.0 tracer

Follow the directions below to trace an attempt to SAML Single Sign On to ArcGIS Enterprise or ArcGIS Online.

Procedure

  1. Once the extension is installed and enabled, configure the extension options as follows and as shown in the next image:
    • Tracing mode = Extended
    • Maximum number of messages in memory = 100
    • Trace OAuth 2.0 (OIDC) = Disabled
    • Trace SAML = Enabled
    • Trace WS-Federation = Disabled
    • Display items
      • Protocol = Enabled
      • Type = Enabled
      • Verb = Enabled
      • HTTP Method = Enabled

accessing the extension settings

configuring the settings

  1. Open the extension and ensure that its status is "Tracing" - a green arrow will be displayed at the top right, as shown in the next image.

verifying the tracer is running

  1. Reproduce the problem, then export the messages to a list (JSON) file using the Export message list to file button at the bottom right, shown below.

clicking the Export message list to file button

Article ID: 000033778

Software:
  • ArcGIS Online
  • ArcGIS Enterprise

Receive notifications and find solutions for new or common issues

Get summarized answers and video solutions from our new AI chatbot.

Download the Esri Support App

Discover more on this topic

Esri Community

Search for related information

Training

Find training related to this topic

ArcGIS Ideas

Explore ideas and give feedback

Get help from ArcGIS experts

Contact technical support

Download the Esri Support App

Go to download options