Azure SAML AWS Cognito 404

Sam 1 Reputation point
2020-12-02T06:51:02.5+00:00

I am integrating AWS Cognito and Azure enterprise application with saml single sign-on using the instructions in this link: https://www.terminalbytes.com/azure-ad-integration-as-an-idp-with-aws-cognito/

The problem I am having is when I navigate from the Cognito hosted ui to Azure, if I am not logged in on the Azure side, I get a 404 on this page: https://login.live.com/oauth20_authorize.srf?response_type=code&client_id=51483...

As a comparison, if I am already logged in on the Azure side, it works fine and I get authenticated. Why would it return a 404?

This stackoverflow points to the same issue, but there is no solution apart from switching to OIDC which is not an option for us: https://stackoverflow.com/questions/57918127/im-trying-to-integrate-aws-cognito-with-azure-ad-for-single-sign-on-but-the-pa.

Anyone have any suggestions?

Thanks

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,536 questions
{count} votes

1 answer

Sort by: Most helpful
  1. James Hamil 26,116 Reputation points Microsoft Employee
    2020-12-09T23:06:15.12+00:00

    Hi Sam! It would be your account domain address for Azure. It would be helpful to know all of your domains in use (for example, Personal account for AWS, AAD account for Azure, etc)

    Microsoft Account - would be like @microsoft
    Personal - would be like @réalisations .com
    AAD - would be like username.tenant@onmicrosoft.com

    Hope this helps!

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.