Overview
This article addresses an issue where users created via a Security Assertion Markup Language (SAML) Identity Provider (IdP) cannot be viewed in the dashboard, and Application Programming Interface (API) calls for these users fail. These issues occur because the user_id is malformed by a newline character included in a SAML attribute.
Applies To
- SAML
- Identity Provider (IdP)
- API
- User Provisioning
Cause
The root cause is a newline character sent by the Identity Provider (IdP) within a SAML attribute value. When this attribute is mapped to create the user_id, the newline character is included, resulting in a malformed identifier.
Solution
To resolve this issue, configure the IdP to remove any newline characters from the SAML attribute value that is mapped to the user_id.
This is a known issue that will be addressed in a future release.