Troubleshooting SSO errors

Shruti
Shruti
  • Updated

When setting up SSO ensure the following steps have been completed:

  • The toggle to enable either Azure or Okta is on (blue) .

  • Application/Client ID, domain (Okta) and tenant IDs are correctly copied from the Application overview into the Benchling In Vivo SSO setup form.

  • The client secret is correct (in Azure this is known as the secret value)

  • The Benchling In Vivo settings have been saved.

  • Users have been granted access to the application in SSO.

    Contact your Implementation manager to enable enforced SSO so that users must login via SSO and can no longer access this tenant via email and password if they have previously set up an account as such. 

 

 

Most common issues/errors with MS active directory (Azure):

Error Message

Cause

Resolution

Error AADSTS50011: The redirect URI specified in the request does not match

There is an issue with the URL entered in Azure application settings.

 

Error 500

Incorrect or expired Secret value

In the certificates and secrets section of the application settings in Azure, create a new secret making sure to copy the Secret VALUE and paste this into the secret field In the Benchling In Vivo SSO setup page.

 

Depending on the Azure configuration, this secret may expire every 1 or 2 years and will need to be replaced. 

AADSTS50105: Your administrator has configured the application x to block users unless they are specifically granted ('assigned') access to the application

User has not been granted access to this application

Ensure that the user attempting to gain access to the application has bee added as a user or to the group of users assigned to this app in Azure.

 

Most common issues/errors with Okta:

Error

Resolution

Users cannot gain access

Ensure that the user attempting to gain access to the application has bee added as a user or to the group of users assigned to the enterprise application.

The page does not exist

Check the URIs for Login and logout. Ensure that you have entered the correct URI for sandbox or production depending on which environment this tenant is on.

See Setup guide for more information.

If you cannot resolve the issues you have or are hitting any error messages that direct you to contact support, don't hesitate to get in touch through your benchling representative or submit a ticket through support@benchling.com

Was this article helpful?

Have more questions? Submit a request