[IdP] Idp single sign on Azure AD

[IdP] Idp single sign on Azure AD

  
Forge Component
(26)
Published on 4 Jul by Telmo Martins
26 votes
Published on 4 Jul by Telmo Martins

Hi All, 

Trying to use Idp connector to sign in user from Azure Active Directory

Followed instructions from Idp, registered an app in Azure and updated idp configurations (screenshot attached) 

When I go to login screen I get following error 


UNABLE TO PROCESS REQUEST

Unable to create SAML Request

Saml Message Logs says "Invalid URI: The URI is empty"


Could you please assist?


Thanks


Hi Qaisar,

Based on the screenshot, you may have some invalid configuration on the connector, the IdPServer (Azure AD) SSO URL or the SP entity/issuer value.

Regards.


Hi Telmo, 


Thanks for your reply, Here is the screenshot of the configuration screen, I got these URLs from Azure AD when I added an application for SSO using SAML2


I am not sure which URL should I use for "IdP server Single Sign-On URL" is this the one specified in screenshot or should this be URL given to me from Azure Application (below)


Hi,

You should use the one provided by Azure (it's Azure domain URL, not a IdP connector domain URL).

You should also uncheck the "Is OutSytems IdP Server" option, since you are using Azure AD as IdPServer.

However the error you got, its due a malformed URI in the configuration. The IdP server URL or the SP issuer that's configured on the next tab (SP Connector and claims).

Regards