SSO Authentication

With the Compliance Module, KaiNexus supports SAML 2.0 to limit attacks from phishing schemes and make participation as easy as possible for everyone.

What is SSO?

Single sign-on (SSO) is an authentication service that enables a User to use one set of login credentials (for example, a name and password) to access multiple applications. Common SSO providers include Okta and Microsoft Azure.

SSO Error Messages

You may receive either of the following SSO error messages when logging into KaiNexus:

  • “An error occurred while authenticating with your SSO provider. Learn more.” 
  • "You can't use KaiNexus just yet. The username provided by your organization's authentication system did not match a user in KaiNexus. This usually means that your KaiNexus account has not been set up."
Typically these errors appear when the username (NameID) being passed to KaiNexus from your IdP (Identity Provider) does not match the username on your user profile in KaiNexus, which is why your account cannot be authenticated. Companies most often use your organizational email address for your NameID/Username.

Ofie StarkEXAMPLE: Stark Industries uses SSO to log in to multiple applications, like J.A.R.V.I.S. and Veronica. Tony Stark's username at Stark Industries is 'Ironman', but his KaiNexus username is ironman@starkindustries.com. When Mr. Stark tries to log in to KaiNexus, he receives an SSO error because his credentials are different and unable to communicate.


Our best suggestion is to reach out to your admin/IT team and see if they can confirm that the NameID being passed from your IdP to KaiNexus matches your Username within KaiNexus. If your credentials do not match, your team will have to update your KaiNexus Username and that should fix the login issue.

However, if your admin/IT team confirms that your credentials match and you're still receiving this error, submit a support ticket and we'll see if there is a deeper issue.

 Screen Shot 2022-01-21 at 10.10.42 AM

Recommended Reading