Team: Huntress EDR
Product: Huntress.io authentication using SAML SSO
Summary: Troubleshooting SAML (Security Assertion Markup Language) is easy once you have the proper tools. This guide was written using Chrome and the add-on SAML-tracer (also available for Firefox), other browsers and add-ons will work but the information may be presented slightly different.
It's possible to get an error and not have a SAML tag, those errors will instead show up at the Huntress portal login. Errors like this usually indicate the user does not exist within Huntress.io
If you're able to get past that screen and into your SAML providers login page then the problem is probably a mismatch between the users data within Huntress and within your SAML provider. Which means you'll need to troubleshoot using a browser add-on. Once you have the SAML-tracer add-on loaded head to your Huntress portal login page and attempt to login using SSO. Depending on the amount of traffic your browser is sending/receiving you may see several entries already populating SAML-tracer:
You'll want to scroll down and look for entries with the SAML icon at the far right. Those will be the SAML responses we'll want to look at.
Click on both and send screenshots to firstname.lastname@example.org and we'll be happy to help out!