12Twenty incident

Shibboleth SSO Sign-on Errors - InCommon Integration

12Twenty experienced a minor incident on October 24, 2023 affecting SSO v2, lasting 16h 28m. The incident has been resolved; the full update timeline is below.

Started: Oct 24, 2023, 04:13 AM UTC
Resolved: Oct 24, 2023, 08:41 PM UTC
Duration: 16h 28m
Detected by Pingoru: Oct 24, 2023, 04:13 AM UTC

Affected components

SSO v2

Update timeline

monitoring Oct 24, 2023, 06:24 PM UTC

Sites that use a Shibboleth InCommon SSO integration experienced issues where students or admins were not able to login using SSO between 2023-10-23 9:13pm PT and 2023-10-24 10:00am PT. This issue likely did not affect sites with custom SAML integrations or sites that updated the 12twenty metadata manually. This issue was a result of the InCommon metadata changes being approved but not yet published at the time of 12twenty's Shibboleth configuration change. InCommon's publication of the updated metadata is scheduled for 2023-10-24 12pm PT. The change was reverted but will need to be reapplied once the old certificate expires. Internal testing of the SAML certificate rollover process did not fully cover all use cases across our various school SSO implementations. We understand how disruptive these issues can be and will ensure that future changes will include more comprehensive testing across all use cases.
resolved Oct 24, 2023, 08:41 PM UTC

Sites that were affected by the SAML Certificate Rollover can now access the platform successfully. If you are still receiving errors, please reach out to your IT team to request a refreshed of the 12twenty Metadata coming from InCommon.