Apex Code Development You need to sign in to do that
Don't have an account?
Chelman URGENT: Error with JIT Provisioning for Customer Community User Profile via SAML
Hi,
There seems to be a limitation in Salesforce when creating Contacts via its JIT provisioning mechanism for Customer Community Portal User. I am quite sure that I've sent over all the necessary SAML attributes for it to work but I am getting an error:
https://na10.salesforce.com/_nc_external/identity/saml/SamlError?ErrorCode=5&ErrorDescription=Unable+to+create+user&ErrorDetails=INVALID_CROSS_REFERENCE_KEY+ContactId+Api+Exception%3A+Cannot+create+a+portal+user+without+contact
I've followed the online documentation quite thoroughly and also simply tried sending an exhaustive combination of attributes but no luck. It seems that whatever combinations of Account/Contact/User fields that were used in SAML Attribute Statement file won't be enough for Salesforce to initiate creating Contact + User.
Reference: https://developer.salesforce.com/blogs/developer-relations/2014/06/how-to-provision-salesforce-communities-users.html
There seems to be a limitation in Salesforce when creating Contacts via its JIT provisioning mechanism for Customer Community Portal User. I am quite sure that I've sent over all the necessary SAML attributes for it to work but I am getting an error:
https://na10.salesforce.com/_nc_external/identity/saml/SamlError?ErrorCode=5&ErrorDescription=Unable+to+create+user&ErrorDetails=INVALID_CROSS_REFERENCE_KEY+ContactId+Api+Exception%3A+Cannot+create+a+portal+user+without+contact
I've followed the online documentation quite thoroughly and also simply tried sending an exhaustive combination of attributes but no luck. It seems that whatever combinations of Account/Contact/User fields that were used in SAML Attribute Statement file won't be enough for Salesforce to initiate creating Contact + User.
Reference: https://developer.salesforce.com/blogs/developer-relations/2014/06/how-to-provision-salesforce-communities-users.html
Dr. Thomas MillerI had issued getting this working as well - at the end I decided to use a custom SAML JIT handler which I could debug. Note that Salesforce provides you with a template (which is good) but this doesn't match the description in the documentation (and there are even several different versions of the description how the standard SAML JIT handler works - one more reason to go for a custom one).
Pat Borjon 9Can you provide the custom JIT code? I am having the same challenge for our university. I am using the auto-created JIT class "AutocreatedRegHandlerxxxxxxxxxxxxx" but it is throwing the same error.