Issue
Users accessing their accounts via SSO, may experience a login loop when attempting to access their SendGrid account. After entering their SSO credentials in their IdP login page, users are redirected to the SendGrid login page. This issue is often accompanied by a "401 Unauthorized" status code.
Cause
The login loop issue can occur due to an expired certificate on the user's IdP site. When the certificate is not up-to-date, it can interfere with the authentication process, leading to a failure in passing the IdP check.
Resolution
To resolve the login loop issue, follow these steps:
- Identify the Expired Certificate: Check your site's certificates to identify any that may have expired.
- Renew the Certificate: Once an expired certificate is identified, renew it to ensure it is up-to-date.
- Upload the x509 Certificate: After renewing the certificate, upload the x509 certificate to the SendGrid site using your Parent Account.
- Verify the Resolution: Attempt to log in to SendGrid again to ensure the issue is resolved.
Additional Information
- Request Details: The issue may present with a "401 Unauthorized" status code during the login attempt.
- IdP Check: The problem is often linked to the IdP robot-human check, which requires valid certificates for successful authentication.
- Support: If the issue persists after following these steps, please contact Twilio Support for further assistance.
You can find more information regarding SSO settings clicking Here.
By following these steps, users should be able to resolve the login loop issue and regain access to their SendGrid accounts. If you have any further questions or need additional help, feel free to reach out to our support team.