If you see “Error validating SAML message” when setting up SSO or logging in to your account, check the corresponding instructions below.
This error message in Azure AD may be caused by a corrupted certificate generated by Azure AD.
We suggest you try generating a new certificate in Azure AD. To do that, click Edit next to SAML Signing Certificate, and then click New Certificate in the window that opens next.
This error indicates that the signature validation of the SAML response from the IdP was not successful. The SAML response is signed by the identity provider’s private key and is validated on the Grammarly side using the identity provider’s public key. The public key is contained within the certificate (X509) uploaded to Grammarly. We need to ensure it is valid and corresponds to the private key used by the identity provider to sign the SAML response.
It may also appear that the SSO was misconfigured on the IdP side. Please ensure that all attributes are present in SAML, including NameID.
To log in to your Grammarly account, you will need to launch Grammarly from your identity provider’s page.
If you do not see the Grammarly app in your identity provider’s dashboard, we suggest you log in at http://www.grammarly.com/signin using your educational or business email address.
If this doesn’t help, we recommend that you contact your account administrator directly to configure SSO correctly using the suggestions provided in the articles below:
This error code indicates that the Identity Provider blocked the authentication because of incorrect or missing user permissions or service provider configuration.
This issue is typically caused by SSO-specific information missing in the Service Provider configuration on the Identity Provider’s side.
We suggest that you please check that all parameters in the configuration, NameID in particular, are correct.
Please see this article to learn more.