Submit Feedback
Legacy Knowledge Base
Published Jul. 2, 2025

Existing users in Liferay can not login through SAML with "Screen name x must not be duplicate ..." error

Written By

Emma Liu

How To articles are not official guidelines or officially supported documentation. They are community-contributed content and may not always reflect the latest updates to Liferay DXP. We welcome your feedback to improve How To articles!

While we make every effort to ensure this Knowledge Base is accurate, it may not always reflect the most recent updates or official guidelines.We appreciate your understanding and encourage you to reach out with any feedback or concerns.

Legacy Article

You are viewing an article from our legacy "FastTrack" publication program, made available for informational purposes. Articles in this program were published without a requirement for independent editing or verification and are provided"as is" without guarantee.

Before using any information from this article, independently verify its suitability for your situation and project.

Issue

  • If the user exists in Liferay (service provider), the user cannot log in through SAML due to duplicate screenname ERROR.
2019-04-23 04:29:45.758 ERROR [http-nio-18080-exec-7][BaseSamlStrutsAction:58] Screen name ccc must not be duplicate but is already used by user 34863
  • After changing the log level of "com.liferay.saml.opensaml.integration.internal.resolver.DefaultUserResolver " to "DEBUG", the DEBUG log should look like the following:
2019-04-23 04:29:12.607 DEBUG [http-nio-18080-exec-7][DefaultUserResolver:78] Resolving user with name ID format urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress and value ccc@liferay.com
2019-04-23 04:29:12.608 DEBUG [http-nio-18080-exec-7][DefaultUserResolver:354] Importing user with identifier ccc@liferay.com of type emailAddress
2019-04-23 04:29:12.608 DEBUG [http-nio-18080-exec-7][DefaultUserResolver:205] Attributes mapping for samlidp emailAddress=emailAddress_screenName=screenName [Sanitized]
2019-04-23 04:29:31.721 DEBUG [http-nio-18080-exec-7][DefaultUserResolver:285] com.liferay.portal.kernel.exception.NoSuchUserException: No User exists with the key {companyId=20099, emailAddress=cccd@liferay.com}
com.liferay.portal.kernel.exception.NoSuchUserException: No User exists with the key {companyId=20099, emailAddress=cccd@liferay.com}
 at com.liferay.portal.service.persistence.impl.UserPersistenceImpl.findByC_EA(UserPersistenceImpl.java:4747)
 at com.liferay.portal.service.impl.UserLocalServiceImpl.getUserByEmailAddress(UserLocalServiceImpl.java:2815)
 at sun.reflect.GeneratedMethodAccessor713.invoke(Unknown Source)
 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
 at java.lang.reflect.Method.invoke(Method.java:498)
 at com.liferay.portal.kernel.bean.ClassLoaderBeanHandler.invoke(ClassLoaderBeanHandler.java:66)
 at com.sun.proxy.$Proxy607.getUserByEmailAddress(Unknown Source)
 at com.liferay.portal.kernel.service.UserLocalServiceWrapper.getUserByEmailAddress(UserLocalServiceWrapper.java:1832)
 at sun.reflect.GeneratedMethodAccessor713.invoke(Unknown Source)
 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
 at java.lang.reflect.Method.invoke(Method.java:498)
 at com.liferay.portal.kernel.bean.ClassLoaderBeanHandler.invoke(ClassLoaderBeanHandler.java:66)
 at com.sun.proxy.$Proxy608.getUserByEmailAddress(Unknown Source)
 at sun.reflect.GeneratedMethodAccessor713.invoke(Unknown Source)
 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
 at java.lang.reflect.Method.invoke(Method.java:498)
 at com.liferay.portal.spring.aop.ServiceBeanMethodInvocation.proceed(ServiceBeanMethodInvocation.java:153)
 at com.liferay.portal.spring.transaction.DefaultTransactionExecutor._execute(DefaultTransactionExecutor.java:203)
 at com.liferay.portal.spring.transaction.DefaultTransactionExecutor.execute(DefaultTransactionExecutor.java:94)
 at com.liferay.portal.spring.transaction.TransactionInterceptor.invoke(TransactionInterceptor.java:113)
 at com.liferay.portal.spring.aop.ServiceBeanMethodInvocation.proceed(ServiceBeanMethodInvocation.java:130)
 at com.liferay.portal.spring.aop.ChainableMethodAdvice.invoke(ChainableMethodAdvice.java:55)
 at com.liferay.portal.spring.aop.ServiceBeanMethodInvocation.proceed(ServiceBeanMethodInvocation.java:130)
 at com.liferay.portal.spring.aop.ServiceBeanAopProxy.invoke(ServiceBeanAopProxy.java:125)
 at com.sun.proxy.$Proxy42.getUserByEmailAddress(Unknown Source)
 at com.liferay.saml.opensaml.integration.internal.resolver.DefaultUserResolver.getUser(DefaultUserResolver.java:264)
 at com.liferay.saml.opensaml.integration.internal.resolver.DefaultUserResolver.importUser(DefaultUserResolver.java:362)
 at com.liferay.saml.opensaml.integration.internal.resolver.DefaultUserResolver.resolveUser(DefaultUserResolver.java:99)
 at com.liferay.saml.opensaml.integration.internal.profile.WebSsoProfileImpl.doProcessResponse(WebSsoProfileImpl.java:630)
 at com.liferay.saml.opensaml.integration.internal.profile.WebSsoProfileImpl.processResponse(WebSsoProfileImpl.java:170)
 at com.liferay.saml.web.internal.portlet.action.AssertionConsumerServiceAction.doExecute(AssertionConsumerServiceAction.java:59)
 at com.liferay.saml.web.internal.portlet.action.BaseSamlStrutsAction.execute(BaseSamlStrutsAction.java:51)
 at com.liferay.portal.kernel.struts.BaseStrutsAction.execute(BaseStrutsAction.java:39)
 at com.liferay.portal.struts.ActionAdapter.execute(ActionAdapter.java:50)
 at com.liferay.portal.struts.PortalRequestProcessor._processActionPerform(PortalRequestProcessor.java:715)
 at com.liferay.portal.struts.PortalRequestProcessor._process(PortalRequestProcessor.java:655)
 at com.liferay.portal.struts.PortalRequestProcessor.process(PortalRequestProcessor.java:194)
 at com.liferay.portal.servlet.MainServlet.process(MainServlet.java:1066)
 at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:462)
 at javax.servlet.http.HttpServlet.service(HttpServlet.java:660)
 at com.liferay.portal.servlet.MainServlet.callParentService(MainServlet.java:597)
 at com.liferay.portal.servlet.MainServlet.service(MainServlet.java:574)
 at javax.servlet.http.HttpServlet.service(HttpServlet.java:741)
 at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:231)
 at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
 at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:53)
 at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)
 at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:119)
 at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:144)
 at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:103)
 at com.liferay.portal.apio.internal.architect.servlet.filter.APIDocumentationFilter.processFilter(APIDocumentationFilter.java:74)
 at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:49)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
 at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:144)
 at com.liferay.portal.servlet.filters.strip.StripFilter.processFilter(StripFilter.java:340)
 at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:49)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
 at com.liferay.portal.servlet.filters.password.modified.PasswordModifiedFilter.processFilter(PasswordModifiedFilter.java:58)
 at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:49)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
 at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:144)
 at com.liferay.portal.servlet.filters.secure.BaseAuthFilter.processFilter(BaseAuthFilter.java:340)
 at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:49)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
 at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:144)
 at com.liferay.portal.sharepoint.SharepointFilter.processFilter(SharepointFilter.java:88)
 at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:49)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
 at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:144)
 at com.liferay.portal.servlet.filters.virtualhost.VirtualHostFilter.processFilter(VirtualHostFilter.java:263)
 at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:49)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
 at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:144)
 at com.liferay.portal.monitoring.internal.servlet.filter.MonitoringFilter.processFilter(MonitoringFilter.java:178)
 at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:49)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:188)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:96)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:188)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:96)
 at org.tuckey.web.filters.urlrewrite.RuleChain.handleRewrite(RuleChain.java:176)
 at org.tuckey.web.filters.urlrewrite.RuleChain.doRules(RuleChain.java:145)
 at org.tuckey.web.filters.urlrewrite.UrlRewriter.processRequest(UrlRewriter.java:92)
 at org.tuckey.web.filters.urlrewrite.UrlRewriteFilter.doFilter(UrlRewriteFilter.java:389)
 at com.liferay.portal.servlet.filters.urlrewrite.UrlRewriteFilter.processFilter(UrlRewriteFilter.java:65)
 at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:49)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:168)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:96)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:168)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:96)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:188)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:96)
 at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilter.doFilter(InvokerFilter.java:101)
 at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)
 at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)
 at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:199)
 at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:96)
 at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:494)
 at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:137)
 at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:92)
 at org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:651)
 at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:87)
 at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:343)
 at org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:407)
 at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:66)
 at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:754)
 at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1376)
 at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49)
 at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)
 at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)
 at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
 at java.lang.Thread.run(Thread.java:748)
2019-04-23 04:29:45.757 DEBUG [http-nio-18080-exec-7][DefaultUserResolver:135] Adding user with attributes map {firstName=[ccc], lastName=[ccc], emailAddress=[ccc@liferay.com], screenName=[ccc]}
2019-04-23 04:29:45.758 ERROR [http-nio-18080-exec-7][BaseSamlStrutsAction:58] Screen name ccc must not be duplicate but is already used by user 34863

Environment

  • Liferay DXP 7.1

Resolution

  • A common cause of the issue is that multiple users share the same screen name and different email addresses.
  • Options to resolve this:
    • Double check if both users are needed and remove the invalid one/s.
    • If both users are needed, consider autogenerating user screen names by enabling the following property: 
       #

       # Set this to true to always autogenerate user screen names even if the user

       # gives a specific user screen name. If this is set to true, the LDAP

       # importer will fetch users by their email address even if the property

       # "company.security.auth.type" is set to screenName.

       #

       # Env: LIFERAY_USERS_PERIOD_SCREEN_PERIOD_NAME_PERIOD_ALWAYS_PERIOD_AUTOGENERATE

       #

       users.screen.name.always.autogenerate=true
Did this article resolve your issue ?
Legacy Knowledge Base
Did this article resolve your issue ?