Carbon Black Cloud SAML Login Fails With WRONG_AUTH_METHOD or Permission Denied
search cancel

Carbon Black Cloud SAML Login Fails With WRONG_AUTH_METHOD or Permission Denied

book

Article ID: 288595

calendar_today

Updated On:

Products

Carbon Black Cloud Endpoint Standard (formerly Cb Defense) Carbon Black Cloud Workload Carbon Black Cloud Prevention Carbon Black Cloud Enterprise EDR (formerly Cb Threathunter) Carbon Black Cloud Audit and Remediation (formerly Cb Live Ops)

Issue/Introduction

  • SAML login fails when using an IDP Application Tile
  • When logging in directly via the Carbon Black Cloud Console URL it works
  • Error messages may include the following:
    • "loginStatus":"WRONG_AUTH_METHOD"
    • Error: "Permission Denied You are here because you don't have the necessary permissions to access the requested page"
    • "error_description=There is no app identifier provided in the response from the Identity Provider"

Environment

  • Carbon Black Cloud Console: All Supported Versions

Cause

IDP Initiated Logins are not supported at this time, this is being tracked via SECP-15536

Resolution

Login directly with the appropriate dashboard URL mentioned here

Additional Information

  • This article will be updated once IDP Initiated logins are supported again
  • As a workaround a tile with the CBC URL could be added like an Okta Bookmark
  • Additional AuthHub information can be found here
Powered by Wolken Software