Forum Discussion

Petrica's avatar
Petrica
New Contributor II
8 years ago
Solved

SSO login issues

Hi ,

We have multiple Snaplogic orgs created which are using same Identity Provider ( IdP).
Today on one of the org i changed the IdP and when i tried to login back using SSO i received an error message
“Single Sign On authentication failed.SSO login cannot be used for users that are members of orgs that have different identity providers”
I’ve changed back afterwards the IdP on that org to the same IdP as was set up previously , but i’m still getting same error message.
What am i missing here ? why this is happening ?

Thank you,

sso
  • Petrica's avatar
    Petrica
    8 years ago

    Issue solved. Was a problem with the metadata Idm file.

7 Replies

  • Petrica's avatar
    Petrica
    New Contributor II
    6 years ago

    Hi @Asad.Humayun,

    This looks like an SSO integration error.
    Check internally with your identity and management team if the “SnapLogic SAML” details for your snaplogic apps were configured ok.

    • Asad_Humayun's avatar
      Asad_Humayun
      New Contributor II
      6 years ago

      Hi @Petrica, thanks for getting back to me.

      More specifically, i was looking to see what issue you found in your idm file? Which part of the file was incorrect?

      • Petrica's avatar
        Petrica
        New Contributor II
        6 years ago

        Hi @Asad.Humayun ,

        In my case the file was different between first moment when it ws uploaded and second moment when i’ve updated the metadata for some orgs.
        There were some additional claims on the metadata.

  • Asad_Humayun's avatar
    Asad_Humayun
    New Contributor II
    6 years ago

    @Petrica, what exactly was the problem with the metadata idm file please?

    I am experiencing a similar issue. Have tried using the same meta file as another org but that results in “Single Sign On authentication failed.SAML Response is invalid”

  • del's avatar
    del
    Contributor III
    8 years ago

    I had a similar issue when adding a second org to SSO. I hope I’m remembering correctly, but it seems that I had to upload the same metadata file on both orgs instead of using the separate metadata files provided by the idP.

    • Petrica's avatar
      Petrica
      New Contributor II
      8 years ago

      I’m using same metadata on all organizations.
      What i’ve done is that i’ve just changed metadata on one org, but afterwards i’ve reverted back , but error is still there. Is like something is stuck on the backend of the snaplogic portal and is still seeing that organization with different IdP metadata.

      • Petrica's avatar
        Petrica
        New Contributor II
        8 years ago

        Issue solved. Was a problem with the metadata Idm file.