Check the SAML requests. Is the principal found? If yes it there also a user with those principals? And do note that user account are case sensitive. I always ask the other party to return the user in lowercase. In their setup they can transform the mail address for instance to all lowercase.
Regards,
Ronald