AAD and IDP Shibboleth 3.0 integration

Ray Bon rbon at uvic.ca
Thu Mar 12 12:55:32 EDT 2020


What is your attribute resolver config?


On Thu, 2020-03-12 at 13:15 -0300, Gustavo Duarte wrote:
Notice: This message was sent from outside the University of Victoria email system. Please be cautious with links and sensitive information.

Hi all,

I'm configuring a Federated domain in my AAD (Azue Active Directory) to be authenticated on my Shibboleth IDP.

On IDP side i configured the user with LDAP.

First a i tested this user with https://samltest.id/ online tool and all work fine.

When try login with this same  user on: https://portal.office.com/ i' redirected to shib IDP login and after write user/pass, following error is showed on browser:

AADSTS500082: SAML assertion is not present in the token.

And in my shib idp log the following error is showed.

Profile Action ResolveAttributes: Error resolving attributes: Invalid Attribute resolver configuration

What is happening, here ?

Thanks in advance.


Ray Bon
Programmer Analyst
Development Services, University Systems
2507218831 | CLE 019 | rbon at uvic.ca<mailto:rbon at uvic.ca>

I respectfully acknowledge that my place of work is located within the ancestral, traditional and unceded territory of the Songhees, Esquimalt and WSÁNEĆ Nations.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20200312/9690fcb9/attachment.html>

More information about the users mailing list