When updating a 'Single Sign-On' (SSO) provider's settings, sometimes the connection is manually disabled in Terraform Cloud.
If a connection is re-enabled the initial configuration that was negotiated between Terraform Cloud and the 'Single Sign-On' (SSO) provider will be invalid.
A previously used 'Single Sign-On' (SSO) provider connection has been re-enabled after being disabled and a error is shown when trying to connect with known working users and configuration.
- Terraform Cloud
- A successful 'Single Sign-On' (SSO) connection was disabled and re-enabling is being attempted.
When a 'Single Sign-On' (SSO) connection is created in Terraform Cloud, it communicates with the 'Single Sign-On' (SSO) provider to pass several required values.
This issue may present itself as;
1. No users are able to log in to Terraform Cloud with their 'Single Sign-On' (SSO) credentials.
2. The 'Single Sign-On' (SSO) Connection Test in Terraform Cloud fails with a 404 error and presents the following error;
Sorry, the page /sso/saml/acs could not be found.
To resolve this issue, you will need to delete the connection and re-create it based on the documentation for your specific 'Single Sign-On' (SSO) provider as listed here; Terraform Single Sign On
To validate that the connection is now working, follow our 'Single Sign-On' (SSO) Connection Test guide to test the connection is valid. If this is successful, you will now be able to enable the connection and validate that users are able to log in to Terraform Cloud.