Request Id: 9fe9664b-5b71-4550-91c6-c82ce59c4701 Correlation Id: 2358f42b-514b-4c78-b766-4481d2e9d23c Timestamp: 2023-02-07T10:17:00Z Message: AADSTS75011: Authentication method 'X509' by which the user authenticated with the service doesn't match r

Question

Request Id:  9fe9664b-5b71-4550-91c6-c82ce59c4701 

Correlation Id:  2358f42b-514b-4c78-b766-4481d2e9d23c

 

Timestamp:  2023-02-07T10:17:00Z 

Message:  AADSTS75011: Authentication method 'X509' by which the user authenticated with the service doesn't match requested authentication method 'Password'. Contact the Pulse Secure PCS application owner. 

Please help me out ...

Answer 1

Gunachandra Reddy-V-ZC

You will receive this error AADSTS75011 when trying to sign into an application that has been setup to use Azure AD for identity management using SAML-based SSO.

Here

The RequestedAuthnContext is in the SAML request. This means the app is expecting the AuthnContext specified by the AuthnContextClassRef. However, the user has already authenticated prior to access the application and the AuthnContext (authentication method) used for that previous authentication is different from the one being requested.

RequestedAuthnContext

The RequestedAuthnContext element specifies the desired authentication methods. It is optional in AuthnRequest elements sent to Azure AD. Azure AD supports AuthnContextClassRef values such as urn:oasis:names:tc:SAML:2.0:ac:classes:Password.

In short, to resolve the issue, you need to contact the Pulse Secure PCS application owner or the AAD admin and ask them to configure the authentication method to match the method that you are using to authenticate.

Links to refer : https://learn.microsoft.com/en-us/troubleshoot/azure/active-directory/error-code-aadsts75011-auth-method-mismatch

https://learn.microsoft.com/en-us/azure/active-directory/develop/reference-aadsts-error-codes

Hope this helps!