How to overwrite the AssertionConsumerURL in SAML2 request

Jesper jesper.laursen at
Tue Sep 4 04:19:47 EDT 2018

Thanks that is understood.
But the key problem is where is this defined:

<samlp:AuthnRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" 
ID="_63cd096414985bde" IssueInstant="2018-09-04T08:00:40Z"
</saml:Issuer><samlp:NameIDPolicy AllowCreate="1"/></samlp:AuthnRequest>

Where can I define what is written in the AssertionConsumerServiceURL? 
Because the normal web traffic is working fine back and forth from the Load
balancer and through IIS. The assembled SAML2 request is simply taking the
internal host name and append it with /Shibboleth.sso/SAML2/POST (As defined
in protocols.xml) - but how can I control the host name in IIS.

Sorry if I formulate it wrong - for me it seems like a simple thing I'm
Does the cert / key files (sp-cert/sp-keys) do the trick. Because the point
to the internal host name.

Sent from:

More information about the users mailing list