I'm using Moodle 3.5, SAML2 (version 2018071100) and ADFS 2.0. No matter which NameID Policy I use, I get an error that says, "Requester/InvalidNameIDPolicy." My ADFS server administrator says that the server doesn't know what to do with 2 of the endpoints given in my metadata xml:
I tried applying the SimpleSAMLphp patch linked at the bottom of this page, which is supposed to address the NameIDPolicy issue, but that just generated a new error:
SAML2 exception: Responder
#1 [dirroot]/auth/saml2/extlib/simplesamlphp/modules/saml/www/sp/saml2-acs.php(129): sspmod_saml_Message::processResponse(Object(SimpleSAML_Configuration), Object(SimpleSAML_Configuration), Object(SAML2\Response))
#2 [dirroot]/auth/saml2/sp/saml2-acs.php(32): require('[dirroot]...')
#3 {main}
Error code: exception
- line 34 of /auth/saml2/sp/saml2-acs.php: saml2_exception thrown