IDP Endpoint Tests

Testing connectivity to the Identity Provider endpoints

Back to Dashboard
Discovery Endpoint OK

The OpenID Connect discovery document

URL: https://ssostaging.mba.org/.well-known/openid-configuration

Result: HTTP 200

Response Preview 
{"issuer":"https://ssostaging.mba.org","jwks_uri":"https://ssostaging.mba.org/.well-known/openid-configuration/jwks","authorization_endpoint":"https://ssostaging.mba.org/connect/authorize","token_endpoint":"https://ssostaging.mba.org/connect/token","userinfo_endpoint":"https://ssostaging.mba.org/connect/userinfo","end_session_endpoint":"https://ssostaging.mba.org/connect/endsession","check_session_iframe":"https://ssostaging.mba.org/connect/checksession","revocation_endpoint":"https://ssostaging...
JWKS Endpoint OK

JSON Web Key Set for token signature verification

URL: https://ssostaging.mba.org/.well-known/openid-configuration/jwks

Result: HTTP 200

Response Preview 
{"keys":[{"kty":"RSA","use":"sig","kid":"5A1F8058F875DF997AD305BC57609F1A","e":"AQAB","n":"yILDMEPUFUr0o0TUG9NYtCvk5zUN13IJMgHhDQ-RNSL-pYosA5CGjBH-ezb6Z5Riw-eRISGxKFlfRMFGUrdl71Wm1c0gZwpd-6td1UKhD-nJXF_NEdDFIX_POKgOhwY_x9Xr3BcS7sQFzvgXAICYSt7bHffZv3ZjlNpgSL9txgyFWM2EIpuNZ7syfUT84144iRXvzlxCSyW4_5sR1GOsZLV7ORFfFmgFlepjqgKgIAmys2uRhukIiV7iN0Ukc8Z_8BSZ0zRkV5iR9pmUeS1Xk-OLvqkvbZ2PbVkGFHgOKWNkZwhyASPXxd2DACzPB4kVC70AZ5L7mhbWTsGUWnzqLQ","alg":"RS256"}]}
Authorization Endpoint OK

Where users are redirected to login

URL: https://ssostaging.mba.org/connect/authorize

Result: HTTP 200

UserInfo Endpoint Skipped

Returns user claims when authenticated

URL: https://ssostaging.mba.org/connect/userinfo

Result: No access token available - login first

Interpretation
All Green?

If all endpoints return OK, the IDP is reachable and responding correctly. Any SSO issues are likely related to:

  • Client configuration (wrong client ID, secret, or redirect URI)
  • Scope permissions
  • Token validation settings
Discovery or JWKS Failed?

This indicates a network or IDP availability issue:

  • IDP server may be down
  • Firewall blocking outbound connections
  • SSL certificate issues
  • DNS resolution problems
UserInfo Failed (401)?

This is expected if not logged in. After successful login, 401 might indicate:

  • Access token expired
  • Access token doesn't have required scopes
  • IDP rejected the token