If you encounter this error when attempting to configure SSO, it is typically caused by incorrect SSO parameters and/or issues with the browser cookies cache.
To resolve this issue, we suggest checking the following:
-
Grammarly SAML application has been configured correctly in your identity provider. It’s essential that the following parameters have been set up correctly:
- Single sign-on URL: https://sso.grammarly.com/saml/assertion
- Audience URI/SP Entity ID/Issuer: https://sso.grammarly.com/saml/metadata
- Name ID format: EmailAddress
- Name ID / Application Username / Unique Identifier: Email
- Required Attributes/Claims:
- EmailAddress
- FirstName
- LastName
Note: The names of attributes/claims must follow the specified format. Alternative name spellings or FriendlyNames are not supported.
- If the Grammarly SAML application is configured correctly, make sure that the IdP Entity ID, SAML 2.0. Endpoint URL, and the x.509 certificate used for SSO configuration are valid and copied correctly.
- Clear your browser’s cookies and cache and try configuring SSO again. You can also try using incognito or private mode in your browser.