SAML 2.0 SSO PingFederate Setup Error

system · January 3, 2025, 4:33pm

How to resolve error " Your Identity Provider did not send your email address in your authentication token. Please contact your administrator and ensure the Identity Provider is properly configured. (#236)" ?

Error Message:

"Your Identity Provider did not send your email address in your authentication token. Please contact your administrator and ensure the Identity Provider is properly configured. (#236)"

Troubleshooting:

Collect SAML Tracer and check the SAML request
Do not get the email address in the SAML assertion

The expected response in SAML assertion should be like:

Resolution:

Make sure the email attribute parameter is correct in the configuration in Ping Federate, It should be set to "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"

Details of PingFederate metadata file PingFederate should be changed:

From:

To:

Topic		Replies	Views
Your Identity Provider Did Not Send Your Email Address In Your Authentication Token. Please Contact Your Administrator And Ensure The Identity Provider Is Properly Configured 236 Knowledge Base orchestrator	0	29	January 3, 2025
Problems integrating with a Saml SSO identity provider Orchestrator orchestrator , question	1	27	February 22, 2025
SAML2 - User mapping issue Orchestrator orchestrator , question	1	1243	November 17, 2022
Identity Server SMTP config Orchestrator orchestrator , bug	1	1386	October 25, 2021
How To Check pingone SSO Configuration? Knowledge Base orchestrator	0	348	January 11, 2023

SAML 2.0 SSO PingFederate Setup Error

How to resolve error " Your Identity Provider did not send your email address in your authentication token. Please contact your administrator and ensure the Identity Provider is properly configured. (#236)" ?

Related topics