Office 365 Now Flagging Some AuthnRequests Forced?

Klingenstein, Nate nklingenstein at
Tue Oct 10 18:39:07 EDT 2017

This is apparently related to a specific client and there will be a patch issued in the future.  Do as you will until then...

From: users <users-bounces at> on behalf of Klingenstein, Nate <nklingenstein at>
Sent: Tuesday, October 10, 2017 12:47:04 PM
To: Shib Users
Subject: Office 365 Now Flagging Some AuthnRequests Forced?

Either these just started showing up today at high noon, or I never noticed this flag being set before.

<samlp:AuthnRequest ForceAuthn="true"
    IssueInstant="2017-10-10T18:56:41.728Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
    <Issuer xmlns="urn:oasis:names:tc:SAML:2.0:assertion">urn:federation:MicrosoftOnline</Issuer>
    <samlp:NameIDPolicy Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent"/>

Count 28 so far.  Enabled forced as a workaround for now.  Anyone else see this?  Was this normal?  Am I nuts?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the users mailing list