Your request included an invalid saml response

Your request included an invalid saml response
This error can occur when the SAML response from the identity provider does not include an attribute with the Name set to 
https://aws.amazon.com/SAML/Attributes/Role
The attribute must contain one or more AttributeValue elements, each containing a comma-separated pair of strings:

* The ARN of a role that the user can be mapped to
* The ARN of the SAML provider

For more information, see Configuring SAML assertions for the authentication response. To view the SAML response in your browser, follow the steps listed in How to view a SAML response in your browser for troubleshooting.

Read: https://docs.aws.amazon.com/IAM/latest/UserGuide/troubleshoot_saml.html#troubleshoot_saml_invalid-response

Review: https://forums.aws.amazon.com/thread.jspa?messageID=925972&#925972

The invalid SAML response is encountered when there are any of the below listed attribute is missing or not propagated in the right format required by AWS.

Subject and NameID
AudienceRestriction and Audience
SAML Role Attribute
SAML RoleSessionName Attribute
SAML SessionDuration Attribute

Related[edit]

SAMLResponse

Your request included an invalid saml response

Related[edit]

Activities[edit]

See also[edit]

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Tools