SSO login error

dasojisanto · ‎07-13-2025

Facing the following error as shown in the image while testing the Azure SSO IDP, Please provide some debugging info.

GlideFather · ‎07-13-2025

I've never seen SSO in DEV, in PROD it is very often, in TEST is also happening but never in DEV. :(( so I'm out of ideas ://

———
/* If my response wasn’t a total disaster ↙️ ⭐ drop a Kudos or Accept as Solution ✅ ↘️ Cheers! */

Ambuj Tripathi · ‎07-14-2025

Hi @dasojisanto

This SNC ID parameter is a mandatory parameter in SAML flow. This parameter is required to identify the SAML request with the SAML response received.

The SNC ID gets generated while generating the SAML request and persisted in the multisso_request_parameter table. Please try it out again and check if the SAML Request's SNC ID is present in the table mentioned above. Once the request is sent to IDP and response is received from the IDP, that response should also contain the same SNC ID in the subject confirmation with InResponseTo tag.

If this is not present in teh response or present but with a different value, then you need to reach out to Identity provider team and ask them to fix this at their end.

This is a pretty standard SAML spec that all the IDPs and SPs should follow.

https://docs.oasis-open.org/security/saml/v2.0/saml-core-2.0-os.pdf

https://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-tech-overview-2.0.html

Can you please check if your SAML response had the InResponseTo field present with a valid value and that should be the same InResponseTo with what was generated and sent initially during the SAML Request?

For your reference, i have attached one sample test connection log and you can see the request and response XML both have this SNC ID and the same ID is also present in the above mentioned table.