Username casing in IDP does not match the casing in tableau

WriteBackExtreme verifies the username from the SSO provider with the username property of the user. When the casing is different (e.g. IDP returns [email protected] and the username in WriteBackExtreme is set to [email protected]) it will fail authorisation.

This needs to be fixed on the IDP side. All major IDP providers have a way of transforming properties for SAML requests.

In Azure for example you can add a transformation claim.
In Okta you can use Okta expression language in the Attribute Statements like this: toLowerCase(user.email)

PreviousAuthentication method by which the user authenticated with the service doesn't match requested auth NextUndefined array key "sp_entity_id"

Last updated 3 hours ago

Was this helpful?