Environment
- EDR Server: All Versions
- SSO Enabled
Symptoms
- Some users are unable to authenticate
- Coreservices log shows message
- <warning> cb.flask.blueprints.api_routes_saml - <username> authenticated but not authorized based on 'authorized' param: False.
Cause
Logic in attr_map.py for the 'authorized' parameter is not being met for the user
Resolution
Confirm that the SSO data provided to the server is including the right values for the user to authenticate to the server.
Additional Notes
- attr_map.py should show which field from the SSO reply is matched on
- Debug logging should help show what data is being sent over for the user request Troubleshoot SSO Integration
