IDP Factor enrollment

Hi Team,

I have added 3rd party IDP to OKTA and added OKTA as SP to the 3rd party IDP and enabled IDP factor and created Factor Enrollment policy where I have set IDP factor is “Required”.

Once I try to access my application, it goes to OKTA for authentication and it completes successfully, later it goes to IDP gives me an option to configure factor and when I click on it, it goes to Enroll screen and the moment I click on Enroll it does the SAML to IDP and fails with an error “Unable to Enroll”

When I looked at the OKTA logs and found that “Unable to validate incoming SAML Assertion” Error.

Please help.