Shibboleth SP, Azure AD IDP - no metadata found.

Dan MacMillan danm at
Wed Jul 4 18:16:35 EDT 2018

Thanks. I don't know how I would install these though. As I understand it, this is optional? Validation helps me from shooting myself in the foot but it won't prevent the system from working -- assuming I myself make sure it is valid, correct?

Dan MacMillan | Integration Specialist
Emerald Associates Inc.

Tel: 403.686.7100 ext. 8930

-----Original Message-----
From: users [mailto:users-bounces at] On Behalf Of Peter Schober
Sent: Friday, June 29, 2018 09:49
To: users at
Subject: Re: Shibboleth SP, Azure AD IDP - no metadata found.

* Cantor, Scott <cantor.2 at> [2018-06-29 17:41]:
> On 6/28/18, 6:34 PM, "users on behalf of Dan MacMillan" <users-bounces at on behalf of danm at> wrote:
> > Setting the validate attribute on the MetaDataProvider element to false resolved my issue.
> That's because Microsoft defined their use of SAML metadata in ways
> that rely on any consumer having a schema for their extensions on
> hand, which the SP obviously does not.

For the OP: I don't have an example handy for what's inside their
md:RoleDescriptor but I think the UKf schema collection should have a

For Consortium Member technical support, see
To unsubscribe from this list send an email to users-unsubscribe at

More information about the users mailing list