My Oracle Support Banner

Error 'Invalid username or password' and 'User was not found during attribute based authentication using NameID mapping for name identifier' After Configuring Federated Identity (SAML) Authentication (Doc ID 2264422.1)

Last updated on DECEMBER 03, 2019

Applies to:

Primavera P6 Enterprise Project Portfolio Management Cloud Service - Version 15.2.0.0 and later
Information in this document applies to any platform.

Symptoms

After configuring Federated Identity using SAML (reference "Enabling Federated Identity Single Sign-On (SSO) Through SAML 2.0 For Primavera Products Hosted In Oracle Cloud (Doc ID 2087067.1)"), the following error occurs after authenticating to the Identity Provider (IdP):

Invalid Username or Password

Note:  The error above is displayed on an Oracle Access Manager login page, after IdP authentication has directed the response back to the service provider (SP).


When this issue occurs, the following error is logged to the SP Oracle Access Manager log files:

TIMESTAMP <Warning> <oracle.security.fed.eventhandler.fed.profiles.sp.sso.assertion.Saml20AssertionProcessor> <FED-15108>
<User was not found during attribute based authentication using NameID mapping for name identifier: $NAMEID_SENT_FROM_IDP name identifier format : urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified and message : $SAML RESPONSE>

 

The issue can be reproduced at will using the following steps:

Open a browser and connect to a Cloud P6 URL configured for Federated Identity.

Note the redirection which occurs to the IdP.

Note the redirection which occurs back to the Service Provider - Instead of redirection to the application, an Oracle Access Manager page displays with the noted error above.

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.