Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
9338
Views
0
Helpful
3
Replies

WebEx Messenger SAML error code 31 when auto creating user

jacovmosto
Level 4
Level 4

‎08-29-2016 09:07 AM - edited ‎03-17-2019 06:19 PM

Hi

When attempting to auto create a user in WebEx Messenger with our SAML IdP, we receive the following error message:

<federatedSSO><title>Connect Client Single Sign On</title><status>FAILURE</

status><errorcode>31</errorcode><reason>Auto Account Creation failed.</reason></federatedSSO>

Looking at Knowledge Base - My Resources and Knowledge Base - My Resources, we have double-checked and there is no existing user with the same email address.

So it seems WebEx Messenger is expecting an attribute which the SAML IdP is not sending over. Although it does include the uid, firstname, lastname and email - which are the required fields according to Cisco documentation.

This is what our IdP sends over:

   <saml:AttributeStatement>

      <saml:Attribute Name="uid">

        <saml:AttributeValue>

B99999998</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="email">
        <saml:AttributeValue>B99999998@studentmail.[ourdomain].ac.uk</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="firstname">
        <saml:AttributeValue>Webex Changed</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="lastname">
        <saml:AttributeValue>Test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="Generator">
        <saml:AttributeValue>nlib</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>


Any ideas where the issue may be?

Thank you


Jacov

Labels:
0 Helpful
3 Replies 3

nate.zimmerman
Level 1
Level 1

‎08-09-2017 08:58 AM

I'm experiencing the same issue. We've verified that the required SAML attributes are being sent and still get the error 31.

Were you able to find a solution?

0 Helpful

larry.wolfe
Level 1
Level 1

‎07-02-2021 06:20 AM

You have exceeded your license allocation. Deactivate unused accounts or remove Meeting capabilities from the accounts that do not need them. 

0 Helpful

Sergio Quezada
Level 1
Level 1

‎07-07-2021 05:50 PM

Take another look at you UID setting is correct.

AttributeRequiredUsage
uidYesWebex username, usually set to corporate username
firstnameYes 
lastnameYes 
DisplaynameNoUsed to show the user’s name in the meeting participant list.
emailYes 
groupidNoSupports only create, not update

 

 

https://help.webex.com/en-us/WBX67566/What-are-the-SAML-Assertion-Attributes-for-Webex-Meetings-and-Jabber

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents