<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D54z0000ABuaNKCQZOkta Classic EngineSingle Sign-OnAnswered2025-09-13T09:01:51.000Z2024-07-09T11:15:30.000Z2024-07-09T14:10:30.000Z

nahbu (nahbu) asked a question.

July 9, 2024 at 11:15 AM
AWS Account Federation in OKTA using SAML 2.0 ERROR

Hi,

 

I am trying to set up an application via the intergrated AWS Account Federation via SAML 2.0 with user SSO and i am running into this error after assigning the application to the users in OKTA:

"

Amazon Web Services Sign In

Your request included an invalid SAML response. To logout, click here

"

Identity Provider, Policies, and OKTA SSO User has all been configured, idp metadata uploaded from OKTA into AWS successfully and API Crednetials tested successfully, attempted the below:

https://support.okta.com/help/s/article/Troubleshooting-SAML-AWS-IAM-Group-Matching-Login-Error-in-Okta?language=en_US

However users still send up seeing the same error message.

 

Any assistance would be greatly appreciated

  • 1 answer
  • 314 views

  • a0n5s (a0n5s)

    Have you try trace the SAML response by saml trace of Chrome plugin? check the parameter​ which AWS required.

This question is closed.
Loading
AWS Account Federation in OKTA using SAML 2.0 ERROR