Azure Link not working

Peter Schober peter.schober at
Mon Dec 10 10:16:46 EST 2018

* M. Demhartner <demhartner at> [2018-12-10 16:08]:
> Thank you, so maybe there is something not correct at their end? In the
> Azure config?

Yes, though it's your config within their system that's seemingly incorrect.
(I haven no idea how "Azure" works, all I'm saying is that obviously
there's something wrong, and that the person putting the incorrect
data there should put correct data there in order to fix it.)

> I gave them the following metadata.xml

>     <md:AssertionConsumerService
> Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
> Location="" index="1"/>
>     <md:AssertionConsumerService
> Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign"
> Location=""
> index="2"/>
>     <md:AssertionConsumerService
> Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact"
> Location=""
> index="3"/>
>     <md:AssertionConsumerService
> Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS"
> Location="" index="4"/>
>   </md:SPSSODescriptor>

As you can see there is no endpoint that ends in "Shibboleth.sso/SAML2/".

So look at your config in their system and fix the incorrect endpoint
URL to match exactly one the above, for whatever binding is needed
there. (Try HTTP-POST if unsure.)


More information about the users mailing list