Andrew Wood
Articles
-
OIDC Revoke Permissions screen
Version Affected: All Description: Users complain that they see the Revoke Permissions screen instead of the App after they login to an OIDC app. Cause: The OIDC Query String is missing from t...
-
Invalid User, Incorrect Group or Error Retrieving Contact information on New Experience Realms
Version Affected: 23.07 Description: In 23.07 using a New Experience application that has multiple Datastores listed a sporadic error occurs of either Invalid User, Incorrect Group or Error Retr...
-
SAML Error: Error Has Been Logged / Keyset does not exist
Version Affected: All Description: When accessing a SAML realm, the Users see an error "Error has been logged" this message is generic and can be caused by several different reasons. Looking in ...
-
Invicti SAML integration
Version Affected: All Description: This document is designed to help intergrate with Invicti Cause: Invicti requires the SAML assertion to be signed but not the SAML message. Resolution: ...
-
Password Reset error message not highlighted in red
Version Affected: 20.06 onwards Description: When a user attempts to change their password and it fails to change for a reason, such as not meeting complexity requirement, this is no longer high...
-
OIDC Scopes vs Claims
Version Affected: All Description: How do OIDC Scopes relate to Claims Cause: FAQ Resolution: There is a direct relationship between scopes and claims. We follow the specs outlined here ...
-
SAML signing cert export format issue
Version Affected: All Description: After exporting the signing cert from the PostAuth tab of a SAML realm to import into an SP, the SP throws an "Invalid Cert" error. Google G Suite is one su...
-
Transformation Engine not working as expected with SecurePortal / TSSO
Version Affected: All Description: A realm using the transformation engine works perfectly fine and then, once Transparent SSO or SecurePortal is enabled, it seems to stop working or become inte...
-
AD LDS over SSL failing with "Error Retrieving Contact Information"
Version Affected: All Description: When trying to connect to AD LDS using SSL, the connection fails and the users see "Invalid User" if ADLDS is the membership provider.If using ADLDS as an addi...
-
Error: Sequence contains more than one matching element
Version Affected: 21.04, 22.02 Description: Some Users are missing their Mobile devices after upgrading. The Error log shows System.InvalidOperationException: Sequence contains more than one mat...