Microsoft Entra SAML Toolkit launcher sends response without SAMLResponse

Mark Babayev 226 Reputation points
2024-01-08T09:52:47.0566667+00:00

I have correctly working SAML connection configured by the "Microsoft Entra SAML Toolkit".

When I manually login to the signOnURL with manually created SAMLRequest everything goes well.

The problem occurs when I try to test it in the "Test single sign-on with Microsoft Entra SAML Toolkit" or when I try to launch my application from the "My Application" page https://myapplications.microsoft.com/:

https://launcher.myapps.microsoft.com/api/signin/dd8516bf-5edf-4f74-9d31-b51a53c324a4?tenantId=483377f3-4860-4ce5-8d05-dee17ba17dbf

In these cases the authentication request is returned to my BackEnd server callback without a SAMLResponse parameter.

The following configuration properties in SAML Toolkit are enabled:

  • Enabled for users to sign-in?
  • Assignment required?
  • Visible to users?
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
24,963 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Akhilesh Vallamkonda 15,310 Reputation points Microsoft External Staff Moderator
    2024-01-09T10:41:53.8133333+00:00

    Hi @Mark Babayev

    Thank you for posting your query on Q&A.

    If the authentication request is returned without a SAMLResponse parameter, it means that the sign-on process failed or was interrupted. it seems the application is not using HTTP redirect binding when sending the SAML request to Microsoft Entra ID. Could you please check the callback URL where you are using an IDP-initiated URL not the SP-initiated URL? the IdP also needs to know the callback URL in order to send the SAML response to the correct location.
    Could you please check that the SAML toolkit is properly configured with the correct values for the SAML endpoint, issuer, and certificate which has not expired.
    I hope this information helps! please Feel free to ask any questions you may have.

    Thanks,
    Akhilesh.

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.