Google SAML invalid response

[mynksh]

Google SAML response in ACS page is not adequately parsed/handled.

[jaredhendrickson13]

Hey!

The invalid_response is just the default error that is returned whenever a SAML2 error occurs. If you enable the debug mode within the System > SAML2 UI page it will give you the details of what went wrong instead of the default error. Once the problem is resolved, be sure to disable the debug mode as the error details can be considered sensitive information.

Thanks.

[Glowsome]

Just additional, if you are testing/setting up you might want to have a browser plugin like SAML Tracer running, so you can see exactly what is being sent to your IDP aswell as the respose(s) from your pfSense SP.