SAML attribute mapping fails with LDAP error and user is not able to login

Solution Unverified - Updated -


  • User who tries to login via external SAML IdP retrieves error in RH-SSO when RH-SSO tries to map a SAML attribute to a role.
  • Support for AD range retrieval in LDAP user federation


  • Red Hat Single Sign-On (RH-SSO)
    • 7.2.4
  • Microsoft Active Directory (AD)

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In