Below you will find the procedure to set up SAML SSO between a test Azure AD SaaS Application and hand ADFS Claims X-Ray to troubleshoot custom SAML claim issuance and transformations.
Tag: Single sign on
RSA SecurID Access SAML Configuration for Microsoft Office 365 issue – “AADSTS50008: Unable to verify token signature. The signing key identifier does not match any valid registered keys”
There recently have been couple cases when the customers who has configured the Azure AD federation with RSA SecureID by following these instructions https://community.rsa.com/docs/DOC-1019 were randomly experiencing the error during users sign in: “AADSTS50008: Unable to verify token signature. The signing key identifier does not match any valid registered keys”. The issue temporary goes away … Continue reading RSA SecurID Access SAML Configuration for Microsoft Office 365 issue – “AADSTS50008: Unable to verify token signature. The signing key identifier does not match any valid registered keys”
Federated applications (CRM and IIS) ADFS Single Sign-On (SSO) troubleshooting with Fiddler
Recently had very interesting issue to troubleshoot. This (long 😊 ) troubleshooting description for sure will help many to understand the ADFS Single Sign-On (SSO) flow and how to read the Fiddler traces. Environment: ADFS 3.0, CRM 2013, IIS 8.5 running a site. Both the CRM and the IIS site are federated with the ADFS. … Continue reading Federated applications (CRM and IIS) ADFS Single Sign-On (SSO) troubleshooting with Fiddler
AD FS Single Sign on is not working with Internet Explorer 11
Symptom: when accessing the federated application from inside of the corporate network using Internet Explorer, the users are presented with AD FS Forms Based authentication (FBA) page instead of Windows Integrated Authentication taking place. At the same time Edge and Chrome WIA are working as expected from intranet. Since there was no Windows security pop … Continue reading AD FS Single Sign on is not working with Internet Explorer 11
