cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Who Me Too'd this topic

SAML failed login attempt error mesage

L1 Bithead

We have SAML setup for GP where we check if user is member of the allow list in the auth profile. 

We have some illegal attempts which show up in system log with only 2 entries, 'saml-client-redirect' and 'auth-fail' with error message 

"failed authentication for user \'*******\'. Reason: User is not in allowlist. auth profile \'********\', vsys \'vsys1\', From: ********."

i.e. lacking both 'saml-signature-validated' and 'saml-idp-activity'.

 

Question: is "User is not in allowlist" the error message regardless if the SAML token is validated or not?

Who Me Too'd this topic