Hi,
We are configuring SAML SSO in our client environment, we completed the configuration and seems to work successfully but we have some issues when the options Create new users upon sign in is selected.
If we don't select this option everything works fine, the user created in Appian and added to the Authentication Group can access the environment fine using SAML. But when we select this box and map the attributes, the configuration test gives the error message: Authentication was unsuccessful. Reason: Required attributes for user creation not found in assertion. And when trying to access the environment with the SAML user in this case we get an error: Error 401 - Unauthorized. I have also checked the assertion xml provided by the Idp (Identity Provider Metadata) and the attributes and claims defined in the Idp and everything seems to be fine.
We have opened a support case with Appian but have not yet found a solution. If anyone had this issue before and was able to solve it, it will be really helpful to us.
Thanks in advance.
Discussion posts and replies are publicly visible
We have managed to solve this error.
Checking the system log tomcat-stdOut.log we have seen that the attribute that was not mapped correctly was the email, and after changing the claim for the correct one the Test configuration returned success as well as trying to access Appian with the user directly. .