SSO: IdP initiated works but SP-initiated does not redirect to IDP ADFS - suggestions?

SSO: IdP initiated works but SP-initiated does not redirect to IDP ADFS - suggestions?

by Sarah Johan -
Number of replies: 1

Hello All, I am setting up SSO and have an issue with the service-provider initiated flow SAML use case.

  • The IdP is ADFS.
  • The SAML Idp Initiated SSO is working but SAML SP-initiated SSO flow doesn't seem to redirect to the ADFS site for authentication. The identity mgmt. team is indicating that when they check the page source they are not seeing an attempt to redirect the user to the IdP for authentication.

The Salesforce.com settings for SSO includes a Identity Provider Login URL in Workday but does not specify an Identity Provider Logout URL but i understand the Logout URL is not required and should not impact the SP-initiated flow.

  1. The Service Provider Initiated Request Binding is set to HTTP REDIRECT. Will changing this to POST help resolve the issue?
  2. If I ask them for a SAML assertion, will that help if I can run it through the validator?

Any other troubleshooting steps?

Thanks!


Average of ratings: -
In reply to Sarah Johan

Re: SSO: IdP initiated works but SP-initiated does not redirect to IDP ADFS - suggestions?

by Howard Miller -
Picture of Core developers Picture of Documentation writers Picture of Particularly helpful Moodlers Picture of Peer reviewers Picture of Plugin developers

I don't know anything about this but, as I have a feeling you won't get an answer otherwise. Which authentication plugin (or whatever) and/or what instructions are you following to set this up in Moodle?

Average of ratings: -