SSO Troubleshooting: The Status Code Of The Response Was Not Success (Requester → AuthnFailed)
Learn how to resolve an authentication request failure during SP‑initiated SSO
What This Error Means
During service provider‑initiated single sign‑on (SP‑initiated SSO), Foundry receives the following error from the identity provider:
The status code of the Response was not Success, was Requester → AuthnFailed
This indicates the identity provider rejected Foundry’s authentication request.
Why This Happens
This error is returned by the identity provider when it determines that the SAML authentication request (AuthnRequest) is invalid or does not match its expected configuration.
Common causes include:
- An incorrect Entity ID
- An incorrect service (ACS) URL
- A certificate mismatch between Foundry and the identity provider
Because the request is rejected by the identity provider, authentication cannot proceed.
How to Resolve the Issue
Verify configuration settings on both sides of the integration.
In your identity provider:
- Open the service provider configuration for Foundry
- Confirm the following values are correct:
- Entity ID
- Service (ACS) URL
- Signing and encryption certificates
In Foundry:
- Open the identity provider configuration
- Verify the following settings:
- Identity provider Entity ID
- Identity provider service URL
- Identity provider certificate
- Check the Foundry SAML Certificate setting
- Ensure the same Foundry certificate is added to the identity provider as both a signing and encryption certificate
After correcting any mismatches, save the configuration and retry SP‑initiated SSO.