Troubleshooting

Single Sign-On for a user can fail due to configuration issues on Ivanti Connect Secure, O365, Okta or Pulse Workspace.

To troubleshoot issues with Single Sign-On:

•On ICS, under Maintenance > Troubleshooting, enable the event codes – “saml, auth” at level “50” and collect debug logs. Enable Policy Tracing and capture the Policy traces for the specific user.

•Check System > Log/Monitoring > User Access > Log for SAML AuthNRequest and Response for the specific user. Verify if Subject Name is proper in the SAML Response.

•Log in to Okta Domain as admin. Navigate to Dashboard > Dashboard. Check the recent activity events to debug the failures.

•On mobile device, open Pulse Client and Send Logs to your administrator.