self-hosted
self-hosted copied to clipboard
getsentry
SSO Configuration Azure DevOps not working
Version
22.5.0
Steps to Reproduce
When following the Azure Active Directory setup guide from the following URL: https://docs.sentry.io/product/accounts/sso/azure-sso/ at step number 13 I get redirected back to my Sentry installation with the following error:
Authentication error: Failed to map SAML attributes. Assertion returned the following attribute keys: 'http://schemas.microsoft.com/claims/authnmethodsreferences', 'http://schemas.microsoft.com/identity/claims/identityprovider', 'http://schemas.microsoft.com/identity/claims/objectidentifier', 'http://schemas.microsoft.com/identity/claims/tenantid'
I have followed all the steps in the guide, entered the information provided in the guide but I still face this issue. Also other (Github) posts that do describe this problem do not fix the problem we are facing.
If any other information is needed please net me know.
Expected Result
SSO configured using Azure Active Directory
Actual Result
Error when configuring Sentry:
Authentication error: Failed to map SAML attributes. Assertion returned the following attribute keys: 'http://schemas.microsoft.com/claims/authnmethodsreferences', 'http://schemas.microsoft.com/identity/claims/identityprovider', 'http://schemas.microsoft.com/identity/claims/objectidentifier', 'http://schemas.microsoft.com/identity/claims/tenantid'
Also other (Github) posts that do describe this problem do not fix the problem we are facing.
Can you link? Maybe there are clues if we compare across cases, also helps with deciding if there are product improvements to be made here vs. one-off configuration or environmental issues.
Failed to map SAML attributes
Can you provide more of the traceback? This is something showing up in server logs, or browser console, or ... ?
This issue has gone three weeks without activity. In another week, I will close it.
But! If you comment or otherwise update it, I will reset the clock, and if you label it Status: Backlog or Status: In Progress, I will leave it alone ... forever!
"A weed is but an unloved flower." ― Ella Wheeler Wilcox 🥀
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}
Hello,
Sorry for taking this long to respond.
The Github issue I was referring to is this one: https://github.com/getsentry/sentry/issues/24248
Sadly I did not find any more information regarding this issue, I have just tried again to setup the SSO connection but got the same error again: Authentication error: Failed to map SAML attributes. Assertion returned the following attribute keys: 'http://schemas.microsoft.com/claims/authnmethodsreferences', 'http://schemas.microsoft.com/identity/claims/identityprovider', 'http://schemas.microsoft.com/identity/claims/objectidentifier', 'http://schemas.microsoft.com/identity/claims/tenantid'
I did find this log entry in the sentry server process: 11:24:37 [WARNING] sentry.auth: sso.login-pipeline.error (flow=2 provider='active-directory' organization_id=1 user_id=1 error_message="Failed to map SAML attributes. Assertion returned the following attribute keys: 'http://schemas.microsoft.com/claims/authnmethodsreferences', 'http://schemas.microsoft.com/identity/claims/identityprovider', 'http://schemas.microsoft.com/identity/claims/objectidentifier', 'http://schemas.microsoft.com/identity/claims/tenantid'")
If you need any more information please let me know if you can tell me where to find it what you need.
I've got the same error message as mentioned in #1928. I've already configured the mappings properly, but new users can't login. Old users can however login with Azure.
