"It's not you, it's us" with Okta as IdP for AWS SSO

1

After trying to access AWS account via Okta, users are getting the "It's not you, it's us We couldn't complete your request right now. Please try again later." message. It's been occurring for more than a week. Integration was configured by following this guide: https://docs.aws.amazon.com/singlesignon/latest/userguide/okta-idp.html and previously worked fine with another AWS account.

主题

安全、身份和合规性

标签

AWS IAM 身份中心

语言

English

AWS-User-2406173

已提问 2 年前930 查看次数

1 回答

最新
投票最多
评论最多

这些答案有用吗？为正确答案投票，以帮助社区从您的知识中受益。

0

Check cloudtrail for this API call: ExternalIdPDirectoryLogin

The common reasons for this error are

Clock skew
mismatch in the saml xml file between idp and sp

已回答 2 年前

相关内容

AWS Connect error - Application has not been enabled for your directory
专家
rePost Polyglot
已提问 2 年前
复制Rekognition自定义标签模型时出错：“Cross account access not allowed”。
专家
rePost Polyglot
已提问 7 个月前
The ciphertext refers to a customer master key that does not exist, does not exist in this region, or you are not allowed to access (Query Id: b2c74c7e-21ed-4375-8712-cd1579eab9a7)
专家
rePost Polyglot
已提问 5 个月前
toomanyrequests: You have reached your pull rate limit. You may increase the limit by authenticating and upgrading
专家
rePost Polyglot
已提问 5 个月前
如何解决 Amazon ECS 中的“[AWS service] was unable to place a task because no container instance met all of its requirements”错误？
AWS 官方已更新 1 年前
如何在 Amazon Cognito 用户群体中将 Okta 设置为 SAML 身份提供者？
AWS 官方已更新 6 个月前
如何对 Okta 和 AWS IAM 联合身份验证的“SAML 响应无效”错误进行问题排查？
AWS 官方已更新 2 年前
我从 Amazon S3 桶下载或复制对象时，为什么会出现错误“The ciphertext refers to a customer master key that does not exist, does not exist in this region, or you are not allowed to access”（加密文字指的是不存在、此区域不存在或者您无权访问的客户主密钥）？
AWS 官方已更新 1 年前