Hi, I will answer myself here. We had a problem in the ADFS server not sending a correct reply as the PacketFence is requesting persistent name-id format:
ADFS-server-log: The SAML authentication request had a NameID Policy that could not be satisfied. Requestor: <hostname-of-requestor> Name identifier format: urn:oasis:names:tc:SAML:2.0:nameid-format:persistent When this was taken care of in the ADFS serve we got it working properly. /Pär Stolpe Från: Pär Stolpe via PacketFence-users <packetfence-users@lists.sourceforge.net> Skickat: den 4 maj 2020 14:21 Till: packetfence-users@lists.sourceforge.net Kopia: Pär Stolpe <par.sto...@liu.se> Ämne: [PacketFence-users] ADFS SAML Hi list, has anyone configured SAML login with ADFS as an IdP? I have set up the certificates and are redirected to the login page but after successful authentication I get the error: "Can't validate Identity provider return message : Status code is not success" I don't really know where to start digging and in the logs there are not much to display. Regards, Pär Stolpe
_______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users
