SP: Assertion contains an unacceptable AudienceRestriction
Cantor, Scott
cantor.2 at osu.edu
Thu Aug 13 14:00:06 EDT 2015
On 8/13/15, 1:52 PM, "users on behalf of Scott Gerlach" <users-bounces at shibboleth.net on behalf of sgerlach at gmail.com> wrote:
>
>So I removed the trailing slash and traced the SAML and get the same error, but here is the SAML that's being posted back to the Shibboleth endpoint
Then your configuration isn't actually as you posted. You have to have a different entityID configured.
Normally audience errors are caused by use of the ApplicationOverride mechanism and problems with the mappings to applicationId. Nothing you posted included any of that.
Otherwise I have no explanation other than the usual issues with control characters or something like that getting in the way.
-- Scott
More information about the users
mailing list