|Applies To||RSA Product Set: RSA SecurID Access|
RSA Product/Service Type: Identity Router
|Issue||End users are occasionally unable to login with single sign-on (SSO) to applications.|
The error following error is displayed when this occurs:
Application appears to be improperly configured. Contact your Administrator for assistance.
Retrying the login attempt eventually works.
|Cause||During a login session, all messages related to the session must be forwarded by the load balancer to the same IDR. IDRs do not share end user session information with other IDRs. See Load Balancer Requirements for information about session persistence.|
Intermittent SSO failures are typically caused when session persistence is not being done by the load balancer. This could be due to a load balancer configuration problem or some other reason.