Support Center > Search Results > SecureKnowledge Details
SAML authentication fails to match user groups Technical Level
Symptoms
  • SAML authentication fails to match user groups
  • User fails to login and matches generic* instead of group
  • Error: "username is authenticated but not authorized to log in, because the User is not in a User Group"
  • $FWDIR/log/vpnd.elg or $FWDIR/log/cvpnd.elg
    shows 0 groups recieved

    [25135][7 Jan 17:17:51][CSamporLoginAsync] got login request from username: .
    [25135][7 Jan 17:17:51][CSamporLoginAsync] authenticated by idp:
    [25135][7 Jan 17:17:51][CSamporLoginAsync] otp: (length 60)
    [25135][7 Jan 17:17:51][CSamporLoginAsync] 0 user groups received
Cause

Missing configuration on the Identity Provider Vender.


Solution
Note: To view this solution you need to Sign In .