The Single Sign-On Log

PERMISSIONS  Security level with Admin permission to configure Client Portal & Taskfire. Refer to Admin security settings.

NAVIGATION  Left Navigation Menu > Admin > Admin Categories > Extensions & Integrations > Client Portal & Taskfire > Manage Client Portal Organizations > Client Portal Organization Detail > General Settings > View Log

The Single Sign-On Log page keeps track of all the successful and attempted logins to the Client Portal using a custom Identity Provider. Even if you select an earlier date, the page will only show data going back 30 days.

  • Use the Export icon to export the table and preserve the results.
  • Use the filter row to narrow the results.

The table provides the following information:

Column Description

Date

The date and time of the login attempt. Even if you select an earlier date, the page will only show data going back 30 days.

Contact Name

The contact name in Lastname, Firstname format. The name appears as a hyperlink. Clicking the link will open the Contact page.

Security Level

A pick list of all available Client Portal and Taskfire security levels configured for the client

Username

The contact's Client Portal username

Identity Provider

The display name of the identity provider.

Event Type

The following event types are recorded:

  • Success: The user was successfully logged in.
  • SAML Validation Error: An established Client Portal user cannot be fully authenticated via the SAML response provided by the IdP.
  • User Does Not Exist: The user has a Client Portal account, but does not have an IdP account. These users can still log in from the Client Portal Login page.
  • Contact Does Not Exist: The user has an IDP account, but does not have a Client Portal account, and the integration is not configured to create new users.
  • SAML Certificate Expired: The SAML certificate uploaded when the integration was configured is expired. Refer to Certificate.
  • SAML Response Expired: The SAML response is only valid for a limited time. This error indicates that the assertion was no longer valid.
  • Too Many Contacts Match: This error happens when the creation of new contacts is allowed, but there are multiple matches for the email address.
  • User Access Denied: a user who meets the conditions that deny them access to the Client Portal attempted to log in. Refer to Denied Security Level Identifier.

Detail

This column contains the reason for the failure to log in.