Troubleshoot SAML 2.0 Issues - Administrator Guide - 8 - Cortex XSOAR - Cortex - Security Operations

Cortex XSOAR Administrator Guide

Cortex XSOAR
Creation date
Last date published
Administrator Guide

The following lists common errors and issues when using SAML 2.0 authentication.

  • Errors at your IdP could mean the Service Provider Entity ID and/or Service Identifier are not properly configured in the IdP or in the Cortex XSOAR settings.

  • SAML attributes from the IdP are not properly mapped in Cortex XSOAR. The attributes are case sensitive and must exactly match in your IdP and in the Cortex XSOAR IdP Attributes Mapping.

    All four SAML attributes in Cortex XSOAR: First Name, Last Name, Email, and Group Membership are mandatory, and the IdP must return all of these attributes, mapped correctly in Cortex XSOAR.

  • Group memberships from the IdP have not been properly mapped to Cortex XSOAR user groups. Verify the values your identity provider is sending, in order to properly map the groups in Cortex XSOAR.

  • The identity provider is not configured to sign both the SAML response and the assertion on the login token. Your IdP must be configured to sign both to ensure a secure login.

  • If you require further troubleshooting, we recommend using your browser's built-in developer tools or additional browser plugins to capture the login request and SAML token.