How to use the ADFS interface to obtain secure token?

Question

I want to makes a seurity token request to the corporate ADFS proxy usernamemixed endpoint using the user's corporate credentials. The logon token is used to talk to MSO STS to get an O365 service token that can then be used to sign into SPO.

The corporate ADFS proxy endpoint that issues SAML seurity tokens given username/password credentials.

Generate the WS-Trust security token request SOAP message passing in the user's corporate credentials and the site we want access to. We send the token request to the corporate ADFS proxy usernamemixed endpoint.

The result is ID3242: Failed to authenticate or authorize security token

The Web API is :/adfs/services/trust/2005/usernamemixed/.

Please help me chek what the problem is?

Thanks.

Answer 1

Hi @Shizeng SZ5 Liu | 刘士增

Per my research, It looks like either the username or password passed in the credentials are incorrect. As you are getting token, after decoding it check the audience is valid, and see if it is either clientId or appId uri.

Here is a similar issue with yours, please make a refernece

https://github.com/Azure/azure-cli/issues/21050

---

If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.