oracle.security.fed.event.EventException: SP OSSO Integration Module: could not decrypt the token with current key, and old key expired

There are no available Samebug tips for this exception. Do you have an idea how to solve this issue? A short tip would help users who saw this issue last week.

  • SAML SSO issue in OAM 11gR2 PS3
    via by 2844987,
  • OIF: federation login Exception idpinitiatedssourl
    via by user13114668,
  • Federation between OAM 11gr2 and OpenSSO
    via by 990651,
    • oracle.security.fed.event.EventException: SP OSSO Integration Module: could not decrypt the token with current key, and old key expired at oracle.security.fed.eventhandler.authn.engines.osso.OssoStartSPSSOEventHandler.decrypt(OssoStartSPSSOEventHandler.java:210) at oracle.security.fed.eventhandler.authn.engines.osso.OssoStartSPSSOEventHandler.perform(OssoStartSPSSOEventHandler.java:78) at oracle.security.fed.controller.ActionStateMachine.processEvent(ActionStateMachine.java:141) at oracle.security.fed.controller.EventControllerImpl.processEvent(EventControllerImpl.java:118) at oracle.security.fed.controller.ApplicationController.publishEvent(ApplicationController.java:425) at oracle.security.fed.controller.web.action.RequestHandlerContext.publishEvent(RequestHandlerContext.java:48) at oracle.security.fed.controller.web.action.RequestHandlerSupport.perform(RequestHandlerSupport.java:15) at oracle.security.fed.controller.ApplicationController.processServletRequest(ApplicationController.java:321) at oracle.security.fed.controller.web.servlet.FederationServlet.doGet(FederationServlet.java:151) at oracle.security.fed.controller.web.servlet.FederationServlet.doPost(FederationServlet.java:98) at javax.servlet.http.HttpServlet.service(HttpServlet.java:727) at javax.servlet.http.HttpServlet.service(HttpServlet.java:820) at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227) at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125) at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:301) at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26) at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56) at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:119) at java.security.AccessController.doPrivileged(Native Method) at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:324) at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUtil.java:460) at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.java:103) at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:171) at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71) at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56) at oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:163) at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56) at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.wrapRun(WebAppServletContext.java:3730) at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3696) at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321) at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120) at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2273) at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2179) at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1490) at weblogic.work.ExecuteThread.execute(ExecuteThread.java:256) at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)
    No Bugmate found.