Error message: SAML 2.0 Authentication Failed: User Identifier Not Found

Last update: Tue Sep 10 2024 00:00:00 GMT+0000 (Coordinated Universal Time)

Topics:
System Setup and Administration

CREATED FOR:

Admin

Problem

I am receiving this error when using SAML 2.0: “SAML 2.0 Authentication Failed: User Identifier Not Found.”

Cause

This happens when a UID or NAME ID is not passed from the ADFS Claim rules.

In ADFS the Relying Party Trust needs to have a Claim rule that passes either a UID or a NAME ID value. When you run a Workfront Test Connection, it should show this if successful.

Access requirements

You must have the following access to perform the steps in this article:

Expand to view access requirements for the functionality in this article.

You must have the following access to perform the steps in this article:

table 0-row-2 1-row-2 2-row-2 layout-auto html-authored no-header
Adobe Workfront plan	Any
Adobe Workfront license	New: Standard or Current: Plan
Access level configurations	System Administrator

table 0-row-2 1-row-2 2-row-2 layout-auto html-authored no-header

Adobe Workfront plan

Any

Adobe Workfront license

New: Standard

Current: Plan

Access level configurations

System Administrator

For more detail about the information in this table, see Access requirements in Workfront documentation.

Solution

When editing the ADFS INFO, in the Relying Party Trusts > Select object >Edit Claim Rules.
The LDAP Attribute (left column) should have E-Mail Addresses (or any unique identifier).

The Outgoing Claim Type (right column) should be Name ID.

note note
NOTE
It does not have to have the LDAP Attribute E-Mail Addresses. Any unique identifier that will identify the user can be used but it must be passed into Adobe Workfront as the NAME ID.

recommendation-more-help

5f00cc6b-2202-40d6-bcd0-3ee0c2316b43