Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

Earn badges and make progress

You're on your way to the next level! Join the Kudos program to earn points and save your progress.

Deleted user Avatar
Deleted user

Level 1: Seed

25 / 150 points

Next: Root


1 badge earned


Participate in fun challenges

Challenges come and go, but your rewards stay with you. Do more to earn more!


Gift kudos to your peers

What goes around comes around! Share the love by gifting kudos to your peers.


Rise up in the ranks

Keep earning points to reach the top of the leaderboard. It resets every quarter so you always have a chance!


Come for the products,
stay for the community

The Atlassian Community can help you and your team get more value out of Atlassian products and practices.

Atlassian Community about banner
Community Members
Community Events
Community Groups

Not able to log in to Jira

Since last Friday only two people unable to access Jira with the screen attachment name "Jirauser".


We login through SAML and in AD the user login is success except in jira but he able to access other application.


Please let us know if you need any more information




Hi @Sairaj Naidu 

Do have an error message or screenshot describing their error experience?


Jon Espen

Kantega SSO

Jirauser.pngWe can't log you in right nowThis may be for a variety of reasons, we suggest trying again.
If that doesn't work, contact your JIRA administrator for help.Try again

Do you use a third party SSO add-on to setup SAML in your Jira?


Also, do you see any error messages in you Jira application log related to this? If you do not have access to the Jira server you can use the LastLog add-on to expose the logs in the Jira user interface.


Jon Espen
Kantega SSO

2019-06-27 17:00:39,496 http-nio-8080-exec-47 ERROR anonymous 1020x3171806x1 suuf8t IP,IP /plugins/servlet/samlconsumer [c.a.p.a.i.web.filter.ErrorHandlingFilter] Received invalid SAML response: Signature validation failed. SAML Response rejected
com.atlassian.plugins.authentication.impl.web.saml.provider.InvalidSamlResponse: Received invalid SAML response: Signature validation failed. SAML Response rejected
at com.atlassian.plugins.authentication.impl.web.saml.provider.impl.OneloginJavaSamlProvider.lambda$extractSamlResponse$1(
at com.atlassian.plugin.util.ContextClassLoaderSwitchingUtil.runInContext(
at com.atlassian.plugins.authentication.impl.web.saml.provider.impl.OneloginJavaSamlProvider.extractSamlResponse(
at com.atlassian.plugins.authentication.impl.web.saml.SamlConsumerServlet.doPost(
at javax.servlet.http.HttpServlet.service(
at javax.servlet.http.HttpServlet.service(
at com.atlassian.plugin.servlet.DelegatingPluginServlet.service(
at javax.servlet.http.HttpServlet.service(
at com.atlassian.plugin.servlet.ServletModuleContainerServlet.service(
at javax.servlet.http.HttpServlet.service(
... 53 filtered
at com.atlassian.plugins.authentication.impl.web.filter.ErrorHandlingFilter.doFilter(
... 3 filtered
at com.atlassian.web.servlet.plugin.request.RedirectInterceptingFilter.doFilter(
... 58 filtered
... 1 filtered
... 36 filtered
at com.atlassian.jira.servermetrics.CorrelationIdPopulatorFilter.doFilter(
... 10 filtered
at com.atlassian.web.servlet.plugin.request.RedirectInterceptingFilter.doFilter(
... 4 filtered

It appears that the users are sent to OneLogin for authentication, and when they are redirected back to Jira your SSO product denies to accept the SAML response message from OneLogin. The reason in your case is that the signature is not valid.

Invalid signature can mean you don't have the public key certificate of the IdP so you can't validate its signature. Did you exchange metadata xml files as part of the OneLogin integration?

It is a bit strange if this only happens for two of your users. Is the the error consistent, and does it always happen when these two users login?

It looks like you use the native SAML features from Atlassian. I work for Kantega SSO, which provide alternative SSO solutions with more configuration options and user provisioning support. Please reach out if you continue to struggle getting the OneLogin integration right and is interested in evaluating alternative SSO solutions.

-Jon Espen
Kantega SSO

We are using SAML single sign-on by Microsoft for all users but only two users are not able to login from 10 days and previously there are able to login and working fine for them

A useful tool for troubleshooting such problems is to use Browser addons that can show the SAML messages. One such tool the SAML Message Decoder for Chrome

You could try to install this and see whether there is something suspicious in the SAML request / response pair when the login fails. 

-Jon Espen
Kantega SSO


We found special characters in Display name.

Due to that it is failing.

can you please tell how to solve special characters in Jira.

Thank you,


It is the Microsoft add-on which throws an error message at the parsing and validation of the SAML response here. I believe this happens before user record data is retrieved from Jira and that the problem is independent of both how the user records stored and special characters are handled in Jira. 

-Jon Espen
Kantega SSO


Log in or Sign up to comment

Atlassian Community Events