The External Login Info Is Invalid. (#213)

Logging in with a specific SSO user is currently not possible, error: "The external login information is invalid. (#213)."

Issue Description: Logging in with a specific SSO user is currently not possible. However, a majority of other users can log in successfully. The connection is established through SAML and passes through the ADFS Server. Despite that, an error message appears in the Cloud stating: "The external login information is invalid. (#213)."

Upon examining the SAML assertion sent to the ACS endpoint, it becomes apparent that the list of attributes only includes Display-Name and Department. Neither an email address nor a username is present:

The absence of an email address or username prevents the system from finding the user associated with this assertion.

Resolution:

  • Add an email address to the ADFS configuration. This will enable the affected SSO user to log in successfully.

image.png