Error: “There was an error logging into the external provider. The error message is: access_denied”

This error can occur when logging into Meridian Cloud. This means that your ADFS (Active Directory Federation Services) server is not communicating with our Cloud SAML auth method.

Users can lose access to our Cloud solution if the customers internal ADFS server has issues communicating with their Meridian Tenant.

Solution

1. Restart the ADFS service.

2. Restart the IIS service.

3. In the ADFS server, check if the ADFS Signing certificate is still valid.Ç

   • If the certificate is expired:

     1. Create a new certificate.

     2. Upload the new certificate to your Meridian tenant.

4. Check if the ADFS Signing certificate has not been switched to secondary automatically. This might happen when the expiration date is close.

   To resolve this issue, roll back the primary certificate.

5. Check if user IDs in your AD have been changed—for example, from accruent.com to fortive.com. If so, contact Accruent Support.