/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PublicSymptom
- While implementing Single Sign On with SAML the following error occurs: "Response has invalid status code urn:oasis:names:tc:SAML:2.0:status:InvalidNameIDPolicy, status message is Creation of NameID is not allowed per AuthnRequest."
- The configuration is correct and matches the SAP Attribute names
- NameID is a correct match
Environment
- SAP Analytics Cloud (Enterprise)
- Custom Identity Provider (IdP)
Reproducing the Issue
- Configure the SAML IDP according to SAP help pages
- Try to log in to SAC
- Observe the error message
Cause
While SAC sends request for NameID in the AuthnRequest, the IdP will not return it in the desired format by SAC, resulting in the error message when trying to establish SAML SSO for the tenant.
Resolution
Enable the "Disable NameID persistence" option during the configuration of the SAML.
See Also
- 2569847 - Where can you find SAC user assistance (help) to use, configure, and operate it more effectively?
- Have a question? Ask it here and let our amazing SAP community help! Or reply and share your knowledge!
- 2487011 - What information do I need to provide when opening a case for SAP Analytics Cloud?
- 2511489 - Troubleshooting performance issues in SAP Analytics Cloud
- Search for SAP Analytics Cloud content using SAP for Me, Google or Bing:
- https://me.sap.com/servicessupport/search#?q=SAP%20Analytics%20Cloud%20OR%20SAC&tab=All
- https://www.google.com/search?q=site%3Ahttps%3A%2F%2Fuserapps.support.sap.com+SAP+Analytics+Cloud
- https://www.bing.com/search?q=site%3Ahttps%3A%2F%2Fuserapps.support.sap.com+SAP+Analytics+Cloud
- Note: Add relevant text or warning/error messages to the text search field to filter results.
- SAP Analytics Cloud Connection Guide
- Getting Started with SAP Analytics Cloud Expert Community page
- SAP Analytics Cloud Get More Help and SAP Support
- Need More Help? Contact Support or visit the solution finder today!
Keywords
SSO, Single Sign On, SAML, IDP, error, issue, problem, error message, NameID, SAC, SAP Analytics Cloud , KBA , LOD-ANA-AUT , SAC Authentication / Login , LOD-ANA-ADM , SAC Administration , Problem
Product
SAP Analytics Cloud 1.0
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)