AssertionConsumerServiceURL is having server's IP address instead of FQDN
uday.chandra.kumar
uday.chandra.kumar at accenture.com
Fri Oct 4 02:02:50 EDT 2019
I am using Apache HTTP server along with Shibboleth SP which communicates
with Azure ADFS for authentication. When user gets authenticated, I am
getting below error message -
AADSTS50011: The reply url specified in the request does not match the reply
urls configured for the application: 'https://hello.world.com/shibboleth'.
Reply URL configured at ADFS is -
https://hello.world.com/Shibboleth.sso/SAML2/POST
But when I check SAML, I found
AssertionConsumerServiceURL="https://123.456.789.001/Shibboleth.sso/SAML2/POST
which should be 'https://hello.world.com/Shibboleth.sso/SAML2/POST' to get
this flow working.
I have checked Apache configuration files and have given 'hello.world.com'
against ServerName in httpd.conf file.
Can you please help me understand why AssertionConsumerServiceURL is not
formed using FQDN of the
website(https://*hello.world.com*/Shibboleth.sso/SAML2/POST) and taking
server's IP address (https://*123.456.789.001*/Shibboleth.sso/SAML2/POST).
PS: IP address 123.456.789.001 is shown here just as an example.
-----
Uday
--
Sent from: https://shibboleth.1660669.n2.nabble.com/Shibboleth-Users-f1660767.html
More information about the users
mailing list