IDP Specific

GoogleApps SAML SSO : 403 app is not configured for the user?

4891 views January 13, 2022 January 14, 2022 akshayp 8

This error can occur in the following scenarios:

app not configured for the user

  1. In an SP-initiated flow, if the Entity ID provided in the Service Provider Metadata tab of the plugin does not match any of the Entity IDs of the currently installed apps in the admin console.
  2. While configuring the app in IDP, if the user access is disabled.
  3. If you are logged in with non-GSuite or personal google account.

How to resolve the error?

  1. First try to perform the SSO in your incognito window, if the SSO is successfully performed then it implies that you are using incorrect google account to login.
  2. If this does not resolve your issue, make sure the WordPress SAML SSO Plugin is properly installed and configured before initiating the SSO request.
  3. Ensure that the SP entity ID provided in the Service Provider Metadata tab of the plugin matches with the Entity ID you specified during app creation in the GoogleApps.
  4. SSO through GoogleApps 403 error

    If the issue still persist then the probable issue might be due to the user assignment in the GoogleApps. Follow the below steps to resolve the issue:

  5. Go to admin.google.com and login with your G Suite administrator account.
  6. Navigate to the Apps tab in the left menu and click on Web and mobile apps.
  7. SSO through GoogleApps 403 error

  8. Navigate to your configured app in IDP.
  9. In the user access section, click on the Off for everyone option.
  10. Then select ON for everyone.

If you are still facing the issue then you can contact us at samlsupport@xecurify.com

Was this helpful?