PrashantS.12487 (Customer) asked a question.
Env
- OIDC - Single Sign On
- Okta Identity Engine
- SAML 2.0 Ripple IDP
- Okta Sign In Widget
In case of existing okta user user authenticated and session is created for them, But if the user is not registered and If user try to login to the app rippling is authenticating the user and redirecting to okta but it's giving the 400 error with GENERAL_NONSUCESSS event though JIT is enabled
Here is the sample trace which i am getting once user is authenticated by the rippling
I checked profiled mappings but unable to find any solution. Please suggest any solution here as i need to fix this issue ASAP.
Current Behavior: First we manually add user from okta admin and after that user is able to login into the platform
Expected Behavior: If user is not exist then user should created on the fly and should added into the okta user automatically with the values it get from the rippling IDP
Please Suggest the solution or any advice to that I can get to any resolution
Thanks !!
Hello @PrashantS.12487 (Customer) Thank you for reaching out to our Community!
The 400 error General_NonSuccess is comun when the user does not exist within Okta and through JIT we are unable to create the user. To troubleshoot this we recommend to review the System Log, as the trace looks fine but there may be information missing or additional attributes required for the account creation.
There is one thing that I am unable to see in the trace, which may not be showing and that is the Username. However please review the System log and that will point out the issue with the JIT creation.
Hope this helps.