Skip to content
Snippets Groups Projects
Commit 94b92477 authored by Michelle Almendarez's avatar Michelle Almendarez Committed by Jon Glassman
Browse files

Update file ldap-troubleshooting.md

parent 7ee2c0f5
No related branches found
No related tags found
1 merge request!138687Update file ldap-troubleshooting.md
Hide whitespace changes
Inline Side-by-side
doc/administration/auth/ldap/ldap-troubleshooting.md
+ 19
0
View file @ 94b92477
......@@ -657,6 +657,25 @@ end
You can then [run a UserSync](#sync-all-users) **(PREMIUM SELF)** to sync the latest DN
for each of these users.
## Could not authenticate from AzureActivedirectoryV2 because "Invalid grant"
When converting from LDAP to SAML you might get an error in Azure that states the following:
```plaintext
Authentication failure! invalid_credentials: OAuth2::Error, invalid_grant.
```
This issue occurs when both of the following are true:
- LDAP identities still exist for users after SAML has been configured for those users.
- You disable LDAP for those users.
You would receive both LDAP and Azure metadata in the logs, which generates the error in Azure.
The workaround for a single user is to remove the LDAP identity from the user in **Admin > Identities**.
To remove multiple LDAP identities, use either of the workarounds for the [`Could not authenticate you from Ldapmain because "Unknown provider"` error](#could-not-authenticate-you-from-ldapmain-because-unknown-provider).
## `Could not authenticate you from Ldapmain because "Unknown provider"`
You can receive the following error when authenticating with an LDAP server:
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment