ONTAP System Manager SAML authentication (Shibboleth/OKTA) fails to identify domain user
Applies to
- ONTAP 9.5
- OnCommand System Manager
- Okta SAML
Issue
After configuring SAML with Shibboleth, the following error appears when attempting to access OnCommand System Manager.
The SAML service provider did not identify the user that was authenticated.
Ensure that the SAML identity provider is configured to include in its assertion a "uid" attribute (SAML name "urn:oid:0.9.2342.19200300.100.1.1") whose value
matches the service provider user name.
Authorization failed for the resource at "/sysmgr/"