Reputation: 161
Snowflake is giving me the error "SAML response is invalid or matching user is not found. Contact your local system administrator"
I have an Azure Active directory with SSO and provisioning enabled. Users from my company can SSO into snowflake just fine, but when I invite a user from GMail or another domain into our AD they get the SAML error. The Snowflake AD app has provisioned the user to Snowflake correctly from what I can see.
How do I troubleshoot this?
Thanks, Phil
Upvotes: 1
Views: 4957
Answers (2)
Reputation: 1321
This error is due to unable to identify the user. Please specify the complete name if the user while authenticating:
snowsql -a mytest.us-east-1 -u [email protected]
Upvotes: 2
Reputation: 161
@suzy_lockwood It was the NameID attribute giving me the problem. I linked it back to the Snowflake Application in my Azure AD. The fix was to go to Manage > Single-Sign On > User Attributes and Claims. Under Required Claim I opened the claim "Unique User Identifier (Name ID) and changed the source attribute from UPN to be user.mail.
Upvotes: 2
Related Questions
- Snowflake: Your account has been locked. To continue using snowflake, please contact support
- snowflake.connector.errors.OperationalError: 250003: Failed to get the response
- snowflake.connector.errors.OperationalError: Failed to get the response
- i have problem connceting snowsql to snowflake its showing error
- schema does not exist and not authorized
- User Validation Unsuccessful
- snowflake -There was a problem updating your billing information. Please refresh the page and try again
- Failed to execute request error for SnowSql
- SNOWFLAKE.INFORMATION_SCHEMA does not showing any record
- SingleSignOn with snowflake is giving saml error 390191 - USERNAMES_MISMATCH