Share via

can not upload metadata xml file to enterprise app for SAML SSO

Michael Menzie 36 Reputation points
2023-08-10T20:48:03.4233333+00:00

recently i am no longer able to upload XML metadata files to create SAML SSO for enterprise apps. Normally i create a new enterprise app and then click on single sign on and then i click the upload metadata button and choose the metadataXml file i downloaded from the vendor and it uploads and i save it and the SSO is done. Now i am getting an error when i attempt upload the xml file and it wont accept the file and i have to configure SSO manually. i have also tried updating an existing SSO app with new metadata and i am getting the same error

uploadmetadataerror

the info is correct in the XML file and this is happening with multiple app and files i have tried and its always the same error. so i can no longer upload metadata and have to manually configure them

Community Center Not monitored
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Brian Zarb 1,685 Reputation points
    2023-08-11T06:17:54.9+00:00

    To provide you a brief explenation, the ReplyURL is crucial for the SAML process, as it defines where the Service Provider (SP) expects to receive the SAML assertions from the Identity Provider (IdP).

    The following should resolve your issue:

    • Firstly, ensure start by making sure that your XML file starts with <?xml version="1.0" encoding="UTF-8"?>. Additionally, the file shouldn't contain any unwanted characters, formatting, or other content that's not relevant to SAML metadata.
    • Check that the Assertion... tag in the XML file is correctly set:
    <md:AssertionConsumerService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
Location="https://your-service-provider.com/sso/saml/ACS" index="1"/>
    • 2 other important things are that the metadata should be consistent with the SAML 2.0 specifications & finally i would recommend to validate your whole XML structure online

    XML validator: https://codebeautify.org/xmlvalidator

    Additional Info: https://learn.microsoft.com/en-us/azure/active-directory/hybrid/connect/how-to-connect-fed-saml-idp

    0 comments
  2. Michael Menzie 36 Reputation points
    2023-08-11T13:00:24.51+00:00

    its all correct and the validator link you sent says it is as well. as i said this is happening with multiple XML files i am trying to upload so the chances that i am downloading bad metadata files from multiple companies is slim. there is something wrong with my tenant and microsoft support has been horrible. i am not sure what to do at this point. i would be willing to pay microsoft to help fix this issue but can't figure out how to do that either.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.