The Single Sign-On Log

The date and time of the login attempt. Even if you select an earlier date, the page will only show data going back 30 days.

The contact name in Lastname, Firstname format. The name appears as a hyperlink. Clicking the link will open the Contact page.

A pick list of all available Client Portal and Taskfire security levels configured for the client

The contact's Client Portal username

The display name of the identity provider.

The following event types are recorded:

• Success: The user was successfully logged in.
• SAML Validation Error: An established Client Portal user cannot be fully authenticated via the SAML response provided by the IdP.
• User Does Not Exist: The user has a Client Portal account, but does not have an IdP account. These users can still log in from the Client Portal Login page.
• Contact Does Not Exist: The user has an IDP account, but does not have a Client Portal account, and the integration is not configured to create new users.
• SAML Certificate Expired: The SAML certificate uploaded when the integration was configured is expired. Refer to Certificate.
• SAML Response Expired: The SAML response is only valid for a limited time. This error indicates that the assertion was no longer valid.
• Too Many Contacts Match: This error happens when the creation of new contacts is allowed, but there are multiple matches for the email address.
• User Access Denied: a user who meets the conditions that deny them access to the Client Portal attempted to log in. Refer to Denied Security Level Identifier.