<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
0D5KZ00000rvJqW0AUOkta Classic EngineAPI Access ManagementAnswered2025-06-30T15:56:41.000Z2025-06-16T15:50:34.000Z2025-06-30T15:56:41.000Z

NareshD.49311 (Customer) asked a question.

Okta SAML 2.0 Assertion flow

I am working on a use case where Okta is integrated with an application using SSO via the SAML protocol. Now, the application needs to call one of Okta’s OAuth servers with SAML response to obtain an access token or ID token, so that the user can be authenticated without requiring them to log in again—this is needed to interact with a bot that asks the user some questions. However, when we try to call the API from the application using the SAML 2.0 Assertion flow, we encounter the following error:

{

"error": "invalid_grant",

"error_description": "'assertion' is not a valid SAML 2.0 Assertion."

}

Has anyone implemented this grant type before? What is the solution for this error? Any guidance would be helpful.


This question is closed.
Loading
Okta SAML 2.0 Assertion flow