How to overwrite the AssertionConsumerURL in SAML2 request

Peter Schober peter.schober at
Thu Aug 30 07:19:39 EDT 2018

* Jesper <jesper.laursen at> [2018-08-30 07:44]:
> Shibboleth SP 2.6.

You're aware you're running old, unsupported software?

> The public address is "" and the EC2 IIS 10.0 instance is
> running on "".
> The /secure is working when we in the Azure tell that the replyURL is
> "" because that is what Sihb SP sends in the SAML2 Request.
> In fact all bindings are send as "" and not
> "".

You'll need to set the publicly visible host name, the internal name
is irrelevant and will never work. With Apache httpd that's done using
the ServerName config directive, for IIS there's probably something in
the SP config that provides any missing features.
The documentation for SPv3 (which you're not using yet) is at


More information about the users mailing list