SSO configuration test is failing with Error Reason "The email attribute configured on cloud is missing in SAML response from IDP "

Document created by asampathkumar Support on Apr 24, 2017
Version 1Show Document
  • View in full screen mode


IDP: AD FS

 

Issue: When customer configure details on Lifesize Manage Console for SSO and click on "Test", Error message appear "Failed to complete the configuration. Verify your settings and try again.  Error Reason: The Email Attribute configured on cloud is missing in SAML response from your identity provider"

 

Analysis: Lifesize server expect email address in SAML response using attribute configured in "Email" field. In some customer AD setup, email address is mapped with attribute "upn".

In this case if customer configured default attribute for email  "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress",  SAML response won't contain email address attribute. Hence Lifesize Manage console shows an error message "The Email Attribute configured on cloud is missing in SAML response from your identity provider".

 

Resolution: Configure "Email" attribute as "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn"

Test SSO again and it should show success message.

 

Screen-shots for reference:

1. Error Message:

 

2. Correct Config if "upn" attribute is mapped with email address:

 

 

 

 

 

 

 

 

4 people found this helpful

Attachments

    Outcomes